Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    73e64c797e233b5bb1cf7e08f752353fb5587b9cf86e5cb8636682634e8a7bcc

  • Size

    2.1MB

  • Sample

    221124-k4n1msgb6v

  • MD5

    c12eba950fccf72a28d86ff94735380a

  • SHA1

    64a0a3b28d542b998e59902183c511f3785cec69

  • SHA256

    73e64c797e233b5bb1cf7e08f752353fb5587b9cf86e5cb8636682634e8a7bcc

  • SHA512

    75d4a5cb2acec5ced951f206cb181c711d9c711d74610a3b7b3e110ce970419d84dfbe17f40da6f9078aca1b1056ec5e3d6be26000c64880cea3dfc1c5a27d5e

  • SSDEEP

    49152:h1Osul9RJLu6vcW6hGkaVR7QSiN/tObJmZcqYUuRTe:h1O5rVOhGRkSixtKDo

Malware Config

Targets

    • Target

      73e64c797e233b5bb1cf7e08f752353fb5587b9cf86e5cb8636682634e8a7bcc

    • Size

      2.1MB

    • MD5

      c12eba950fccf72a28d86ff94735380a

    • SHA1

      64a0a3b28d542b998e59902183c511f3785cec69

    • SHA256

      73e64c797e233b5bb1cf7e08f752353fb5587b9cf86e5cb8636682634e8a7bcc

    • SHA512

      75d4a5cb2acec5ced951f206cb181c711d9c711d74610a3b7b3e110ce970419d84dfbe17f40da6f9078aca1b1056ec5e3d6be26000c64880cea3dfc1c5a27d5e

    • SSDEEP

      49152:h1Osul9RJLu6vcW6hGkaVR7QSiN/tObJmZcqYUuRTe:h1O5rVOhGRkSixtKDo

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks