Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8fb1c183032cfdb44270837d4750c35fa3f5a66f8955b8525f5f6d6ec48cab6f

  • Size

    2.1MB

  • Sample

    221124-fned2sdg8v

  • MD5

    12807cc0deace4e091db537f3361971d

  • SHA1

    8071f5758003cfb7bf97c963c99da2e174efa5c6

  • SHA256

    8fb1c183032cfdb44270837d4750c35fa3f5a66f8955b8525f5f6d6ec48cab6f

  • SHA512

    e3ecc58cccb0d8a6d1f64d6da9084b424d83ce9793e1de22321ecd89d35021d5eede1a313d2df32f2580a3ce2c4136ee53efc31856a4216b45dbc9fa59bb018d

  • SSDEEP

    24576:h1OYdaOxGiAEAd/KjjBKyu73i8mxcmMMV6zs+G/pC2d1RJoTJnQqphTuS2MD3GvG:h1OsiMAd/OxfV6zZGYg1RJQnFrTc2Sk

Malware Config

Targets

    • Target

      8fb1c183032cfdb44270837d4750c35fa3f5a66f8955b8525f5f6d6ec48cab6f

    • Size

      2.1MB

    • MD5

      12807cc0deace4e091db537f3361971d

    • SHA1

      8071f5758003cfb7bf97c963c99da2e174efa5c6

    • SHA256

      8fb1c183032cfdb44270837d4750c35fa3f5a66f8955b8525f5f6d6ec48cab6f

    • SHA512

      e3ecc58cccb0d8a6d1f64d6da9084b424d83ce9793e1de22321ecd89d35021d5eede1a313d2df32f2580a3ce2c4136ee53efc31856a4216b45dbc9fa59bb018d

    • SSDEEP

      24576:h1OYdaOxGiAEAd/KjjBKyu73i8mxcmMMV6zs+G/pC2d1RJoTJnQqphTuS2MD3GvG:h1OsiMAd/OxfV6zZGYg1RJQnFrTc2Sk

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks