Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b4fcdad6f34b0e27e3ad3e821efe45ab4d14b9e4d8e2e9260aa9178960fc804f

  • Size

    2.1MB

  • Sample

    221125-q81g5afe8v

  • MD5

    61cf6857ed90b30d1b823f929ea98dfc

  • SHA1

    1da2a8f45ae725e1d2095fc742cf00b6bbb3ada5

  • SHA256

    b4fcdad6f34b0e27e3ad3e821efe45ab4d14b9e4d8e2e9260aa9178960fc804f

  • SHA512

    456ffa38f310032c088e6ba2714ecdd8d58adf09ced5ebca842e99001297082ed62c91f3700cf785d430378641aea79deee53685e01626004ef251700ec18937

  • SSDEEP

    49152:h1OsaaFBQd+eIvim2CQHSM3OYVv8JGUpqqG:h1O/aFBw+LNRR2FQtG

Malware Config

Targets

    • Target

      b4fcdad6f34b0e27e3ad3e821efe45ab4d14b9e4d8e2e9260aa9178960fc804f

    • Size

      2.1MB

    • MD5

      61cf6857ed90b30d1b823f929ea98dfc

    • SHA1

      1da2a8f45ae725e1d2095fc742cf00b6bbb3ada5

    • SHA256

      b4fcdad6f34b0e27e3ad3e821efe45ab4d14b9e4d8e2e9260aa9178960fc804f

    • SHA512

      456ffa38f310032c088e6ba2714ecdd8d58adf09ced5ebca842e99001297082ed62c91f3700cf785d430378641aea79deee53685e01626004ef251700ec18937

    • SSDEEP

      49152:h1OsaaFBQd+eIvim2CQHSM3OYVv8JGUpqqG:h1O/aFBw+LNRR2FQtG

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks