Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b54bec373727fbfc8d89fd5cd579eab3809b6020ada9a094d1bfd33142000c9c

  • Size

    330KB

  • Sample

    221106-jh64nacgcp

  • MD5

    347732780827f6ac1005870f680e2ce0

  • SHA1

    55e31a54ac0a58e0c157ed328909d6978d1e4fc3

  • SHA256

    b54bec373727fbfc8d89fd5cd579eab3809b6020ada9a094d1bfd33142000c9c

  • SHA512

    ad930e1ba9795a2eda943f02e40defc77dff80c560e348bc1a0b6656d26a4d6b9c3fd9ea8caf84f61b6965b7167edca29e1aaa920cc2ab44bd29e87f50c24b72

  • SSDEEP

    768:k6fsIP5ZD07rz/T3PAEAVSJKNY9rBydJfXF8Di:k6UIRZI7/T/5JSY99Ud

Malware Config

Targets

    • Target

      b54bec373727fbfc8d89fd5cd579eab3809b6020ada9a094d1bfd33142000c9c

    • Size

      330KB

    • MD5

      347732780827f6ac1005870f680e2ce0

    • SHA1

      55e31a54ac0a58e0c157ed328909d6978d1e4fc3

    • SHA256

      b54bec373727fbfc8d89fd5cd579eab3809b6020ada9a094d1bfd33142000c9c

    • SHA512

      ad930e1ba9795a2eda943f02e40defc77dff80c560e348bc1a0b6656d26a4d6b9c3fd9ea8caf84f61b6965b7167edca29e1aaa920cc2ab44bd29e87f50c24b72

    • SSDEEP

      768:k6fsIP5ZD07rz/T3PAEAVSJKNY9rBydJfXF8Di:k6UIRZI7/T/5JSY99Ud

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks