Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5c3f7e9a62a283ff743139d8746c3e8e03e4884bc67b4d0a366a7215e3aeb4a4

  • Size

    2.1MB

  • Sample

    221125-rz89caec43

  • MD5

    ed579ca38cb061a11905903057bff483

  • SHA1

    5aac612824fe7389b389c8584c1be4893df5cf4a

  • SHA256

    5c3f7e9a62a283ff743139d8746c3e8e03e4884bc67b4d0a366a7215e3aeb4a4

  • SHA512

    d110ada4055741ad2718eb3798f8fd12375b6ddb9af149fcc0a02bf42e4442811b8698dbef8145c179d17e2b98324b0e35bd908cbb8976065b971f24a7943674

  • SSDEEP

    49152:h1OsQyuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8Pcim:h1OxgoP9oM5LFe

Malware Config

Targets

    • Target

      5c3f7e9a62a283ff743139d8746c3e8e03e4884bc67b4d0a366a7215e3aeb4a4

    • Size

      2.1MB

    • MD5

      ed579ca38cb061a11905903057bff483

    • SHA1

      5aac612824fe7389b389c8584c1be4893df5cf4a

    • SHA256

      5c3f7e9a62a283ff743139d8746c3e8e03e4884bc67b4d0a366a7215e3aeb4a4

    • SHA512

      d110ada4055741ad2718eb3798f8fd12375b6ddb9af149fcc0a02bf42e4442811b8698dbef8145c179d17e2b98324b0e35bd908cbb8976065b971f24a7943674

    • SSDEEP

      49152:h1OsQyuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8Pcim:h1OxgoP9oM5LFe

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks