Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f110e682f443a54420c140db648e7bf59042712dcc3bc41f5de37049e52bd03f

  • Size

    2.1MB

  • Sample

    221125-yq5ccsef4x

  • MD5

    cda02e89168753004580b1218dca6f1e

  • SHA1

    bb4ff4de9db6aba073a781e427f9b48e3c9b0103

  • SHA256

    f110e682f443a54420c140db648e7bf59042712dcc3bc41f5de37049e52bd03f

  • SHA512

    06143c0e59cc7358cb251eb2eb54140735699f652ea63bb6991f7ad9b58eb1601b9362e3c9e425a884c599a6ff5b48a2dee9a2d1879852ec4e1c4000bf7f36c6

  • SSDEEP

    24576:h1OYdaOhzoi5Fm2qmA+L4zKWQt0moNdqNFSj8y0j9jtaJB5ZuUUr2YGnEQ/VfVP:h1Os3mLmVJWQt0mozqW78bSVfVP

Malware Config

Targets

    • Target

      f110e682f443a54420c140db648e7bf59042712dcc3bc41f5de37049e52bd03f

    • Size

      2.1MB

    • MD5

      cda02e89168753004580b1218dca6f1e

    • SHA1

      bb4ff4de9db6aba073a781e427f9b48e3c9b0103

    • SHA256

      f110e682f443a54420c140db648e7bf59042712dcc3bc41f5de37049e52bd03f

    • SHA512

      06143c0e59cc7358cb251eb2eb54140735699f652ea63bb6991f7ad9b58eb1601b9362e3c9e425a884c599a6ff5b48a2dee9a2d1879852ec4e1c4000bf7f36c6

    • SSDEEP

      24576:h1OYdaOhzoi5Fm2qmA+L4zKWQt0moNdqNFSj8y0j9jtaJB5ZuUUr2YGnEQ/VfVP:h1Os3mLmVJWQt0mozqW78bSVfVP

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks