Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    73bf5be5536bd29c3724da5c6424fcee62eea420edb29762d0a99125f7511e46

  • Size

    110KB

  • Sample

    221029-e7v1gacbar

  • MD5

    877996da419cb48838d9769b24f6016c

  • SHA1

    1bd1a5ef7668b1a26eaa0c96c3ad7140428b9597

  • SHA256

    73bf5be5536bd29c3724da5c6424fcee62eea420edb29762d0a99125f7511e46

  • SHA512

    d4752f4e250f7ffae3fcd77e6cfadcd5b5360f1e02618cb285b6d73fef8c580911b211fd09b33b0da5141d3d1c8f3d7923163b68955679cebfacbdb521b838d3

  • SSDEEP

    3072:dUdvtJxKyKWGK3WtrHu6asw3rWe2LLcp/:dUdpzG2SrHxal3Ser

Malware Config

Targets

    • Target

      73bf5be5536bd29c3724da5c6424fcee62eea420edb29762d0a99125f7511e46

    • Size

      110KB

    • MD5

      877996da419cb48838d9769b24f6016c

    • SHA1

      1bd1a5ef7668b1a26eaa0c96c3ad7140428b9597

    • SHA256

      73bf5be5536bd29c3724da5c6424fcee62eea420edb29762d0a99125f7511e46

    • SHA512

      d4752f4e250f7ffae3fcd77e6cfadcd5b5360f1e02618cb285b6d73fef8c580911b211fd09b33b0da5141d3d1c8f3d7923163b68955679cebfacbdb521b838d3

    • SSDEEP

      3072:dUdvtJxKyKWGK3WtrHu6asw3rWe2LLcp/:dUdpzG2SrHxal3Ser

    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks