Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5abdda4ac2b7ac75e282634117f93cc91bcf5f80bd0d78681050476ec3b0951e

  • Size

    2.1MB

  • Sample

    221125-1zgzjadb8y

  • MD5

    e483bb7eced95be845933380227ae605

  • SHA1

    21e893cd1a8c471408d0c983e188d62c0a5e1651

  • SHA256

    5abdda4ac2b7ac75e282634117f93cc91bcf5f80bd0d78681050476ec3b0951e

  • SHA512

    a28c823e8c808a51e0e54395b0b2526d3ecedf94c570f5e094f470d7f76dc425f3fe65d8404e7891dba022346502244c8261a9044abcbca24a9148c6eecdf4b4

  • SSDEEP

    49152:h1Os1yuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8PciC:h1OggoP9oM5LF6

Malware Config

Targets

    • Target

      5abdda4ac2b7ac75e282634117f93cc91bcf5f80bd0d78681050476ec3b0951e

    • Size

      2.1MB

    • MD5

      e483bb7eced95be845933380227ae605

    • SHA1

      21e893cd1a8c471408d0c983e188d62c0a5e1651

    • SHA256

      5abdda4ac2b7ac75e282634117f93cc91bcf5f80bd0d78681050476ec3b0951e

    • SHA512

      a28c823e8c808a51e0e54395b0b2526d3ecedf94c570f5e094f470d7f76dc425f3fe65d8404e7891dba022346502244c8261a9044abcbca24a9148c6eecdf4b4

    • SSDEEP

      49152:h1Os1yuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8PciC:h1OggoP9oM5LF6

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks