Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c3f6d38834a028997862a33176516aafcf46c64b5ba168bdbf832a399ed2947d

  • Size

    1.3MB

  • Sample

    221029-lj9maabffj

  • MD5

    47478f27870ec5b7c126c157b0ff8fec

  • SHA1

    43aa4e08bc5339e0205324cf2ef8d85f955c6721

  • SHA256

    c3f6d38834a028997862a33176516aafcf46c64b5ba168bdbf832a399ed2947d

  • SHA512

    078f5d15e55b2f8785499eb35743d92c95880f0a6815a69e2d4e7facd05daecc7c3c97b71326dcef7ff5cf6bcf24ad73e097f713b74e308ebe52d767aaffa820

  • SSDEEP

    24576:US/rR5QttE6iv4qJOpQWpDhsBLzGOyOy2ioFMo:3Vytt8AFWWnsBLqroio

Malware Config

Targets

    • Target

      c3f6d38834a028997862a33176516aafcf46c64b5ba168bdbf832a399ed2947d

    • Size

      1.3MB

    • MD5

      47478f27870ec5b7c126c157b0ff8fec

    • SHA1

      43aa4e08bc5339e0205324cf2ef8d85f955c6721

    • SHA256

      c3f6d38834a028997862a33176516aafcf46c64b5ba168bdbf832a399ed2947d

    • SHA512

      078f5d15e55b2f8785499eb35743d92c95880f0a6815a69e2d4e7facd05daecc7c3c97b71326dcef7ff5cf6bcf24ad73e097f713b74e308ebe52d767aaffa820

    • SSDEEP

      24576:US/rR5QttE6iv4qJOpQWpDhsBLzGOyOy2ioFMo:3Vytt8AFWWnsBLqroio

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v6

Tasks