Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0e8c16b406bcdbf7038704fd97e1c7ea804d926b348f61b5a4eeb9ebb3fbba2b

  • Size

    931KB

  • Sample

    221124-h8s42sgf59

  • MD5

    848908ded889afe5c78bf63ce1a32831

  • SHA1

    b769ecfc5205759290131c059f6e8f6df65e87ca

  • SHA256

    0e8c16b406bcdbf7038704fd97e1c7ea804d926b348f61b5a4eeb9ebb3fbba2b

  • SHA512

    223c4a68f8a1d5769b9be909362b018e2b3b76f1ef5697c7b1913e348e991e22f7d73a70f9efb6288ad31c1c24f0f31548c82da4c4592cf7349701488e6e4fce

  • SSDEEP

    24576:h1OYdaOjMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfF:h1OsBMWyUQ+GUVFIcHPvpfF

Malware Config

Targets

    • Target

      0e8c16b406bcdbf7038704fd97e1c7ea804d926b348f61b5a4eeb9ebb3fbba2b

    • Size

      931KB

    • MD5

      848908ded889afe5c78bf63ce1a32831

    • SHA1

      b769ecfc5205759290131c059f6e8f6df65e87ca

    • SHA256

      0e8c16b406bcdbf7038704fd97e1c7ea804d926b348f61b5a4eeb9ebb3fbba2b

    • SHA512

      223c4a68f8a1d5769b9be909362b018e2b3b76f1ef5697c7b1913e348e991e22f7d73a70f9efb6288ad31c1c24f0f31548c82da4c4592cf7349701488e6e4fce

    • SSDEEP

      24576:h1OYdaOjMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfF:h1OsBMWyUQ+GUVFIcHPvpfF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks