Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d2db21a72e72af9e55fc8d88b2bfb56968061105971e7a95f5b9a60cd15c61a8

  • Size

    776KB

  • Sample

    221124-ffzp1sdc9s

  • MD5

    e0b7e58339cdec6d47feb7f67e1dd346

  • SHA1

    3bb278b623bf1d705aec6cab2fb60812c97af1b8

  • SHA256

    d2db21a72e72af9e55fc8d88b2bfb56968061105971e7a95f5b9a60cd15c61a8

  • SHA512

    569d0752f6cdb078c7f152fef23562c618b91323de449300926ad1d6a0145db9d01d4b91a7c1f3322c40308c6c010fb412e49a4dccef73c2cb5a528933aba327

  • SSDEEP

    12288:h1OgLdaOxaIWZE51JRPG+iqdl3x4sOA9A9hi3+GVa5u:h1OYdaOQI6E5REGb4sp9whi3+GV9

Malware Config

Targets

    • Target

      d2db21a72e72af9e55fc8d88b2bfb56968061105971e7a95f5b9a60cd15c61a8

    • Size

      776KB

    • MD5

      e0b7e58339cdec6d47feb7f67e1dd346

    • SHA1

      3bb278b623bf1d705aec6cab2fb60812c97af1b8

    • SHA256

      d2db21a72e72af9e55fc8d88b2bfb56968061105971e7a95f5b9a60cd15c61a8

    • SHA512

      569d0752f6cdb078c7f152fef23562c618b91323de449300926ad1d6a0145db9d01d4b91a7c1f3322c40308c6c010fb412e49a4dccef73c2cb5a528933aba327

    • SSDEEP

      12288:h1OgLdaOxaIWZE51JRPG+iqdl3x4sOA9A9hi3+GVa5u:h1OYdaOQI6E5REGb4sp9whi3+GV9

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks