Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    63dd38e3946b2924c115d9f48fe93eac81af03f61e2fffb7097d4f6ba6d7d739

  • Size

    2.1MB

  • Sample

    221124-my7a5sce8y

  • MD5

    e4d114af28dbfff9959c188bef143fa7

  • SHA1

    4880ec854f8715ee6494d97e7371e28f996a74a3

  • SHA256

    63dd38e3946b2924c115d9f48fe93eac81af03f61e2fffb7097d4f6ba6d7d739

  • SHA512

    55d6eef0965e2d12e337b3b30971a49ace0cd89ca83efcd1214921dcc9c9fc7a99639d83171ccf0750382fd08a444fdb5dbb6295def4166fda86ee59994f3d72

  • SSDEEP

    24576:h1OYdaOdTwLleYkTVug2PiL0jHM8WK5z6Sh19BUfOD4XRt1otyBNvJvMXzGK5Ihl:h1OsELARTQ9PimJWtShQnvQsruW

Malware Config

Targets

    • Target

      63dd38e3946b2924c115d9f48fe93eac81af03f61e2fffb7097d4f6ba6d7d739

    • Size

      2.1MB

    • MD5

      e4d114af28dbfff9959c188bef143fa7

    • SHA1

      4880ec854f8715ee6494d97e7371e28f996a74a3

    • SHA256

      63dd38e3946b2924c115d9f48fe93eac81af03f61e2fffb7097d4f6ba6d7d739

    • SHA512

      55d6eef0965e2d12e337b3b30971a49ace0cd89ca83efcd1214921dcc9c9fc7a99639d83171ccf0750382fd08a444fdb5dbb6295def4166fda86ee59994f3d72

    • SSDEEP

      24576:h1OYdaOdTwLleYkTVug2PiL0jHM8WK5z6Sh19BUfOD4XRt1otyBNvJvMXzGK5Ihl:h1OsELARTQ9PimJWtShQnvQsruW

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks