Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9036cdf518eca22a5262e40df0795f5138cc0686a4e46b98c29d5881d5bc1fa7

  • Size

    931KB

  • Sample

    221124-hxkcrsag6w

  • MD5

    fb01b91b7266be780de0737d820cde2d

  • SHA1

    20c07917c44e68db6f2d4ae7d829fc5e71ae55ff

  • SHA256

    9036cdf518eca22a5262e40df0795f5138cc0686a4e46b98c29d5881d5bc1fa7

  • SHA512

    baba5ac1e95047240154f448214ab2c7f333b642d855c65b93a5ae1229c80370dab0c68c6c32a5c417f7d4f0744fe9f0696f7ce61af0680f217a4a12d7f0f411

  • SSDEEP

    24576:h1OYdaOEMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfJ:h1OsOMWyUQ+GUVFIcHPvpfJ

Malware Config

Targets

    • Target

      9036cdf518eca22a5262e40df0795f5138cc0686a4e46b98c29d5881d5bc1fa7

    • Size

      931KB

    • MD5

      fb01b91b7266be780de0737d820cde2d

    • SHA1

      20c07917c44e68db6f2d4ae7d829fc5e71ae55ff

    • SHA256

      9036cdf518eca22a5262e40df0795f5138cc0686a4e46b98c29d5881d5bc1fa7

    • SHA512

      baba5ac1e95047240154f448214ab2c7f333b642d855c65b93a5ae1229c80370dab0c68c6c32a5c417f7d4f0744fe9f0696f7ce61af0680f217a4a12d7f0f411

    • SSDEEP

      24576:h1OYdaOEMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfJ:h1OsOMWyUQ+GUVFIcHPvpfJ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks