Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f49bd8372dfaaa003cf00b71ce8545a4b7e365b208fe1bf3c445ae8c117ba944

  • Size

    2.1MB

  • Sample

    221125-yqt7dsef3v

  • MD5

    717e2baa66a5c4c78377f26cd324c13b

  • SHA1

    f964823296fc2ef23bd9cca1109ef47f489e8fac

  • SHA256

    f49bd8372dfaaa003cf00b71ce8545a4b7e365b208fe1bf3c445ae8c117ba944

  • SHA512

    140de606a5039eed53329edaabeecce7368023ff859d2eebc3275a45b8b96a98b8c4a93ccd48f33ee726ce7a918b60a9590435ebe47a8b3cd1c13d7b4121170f

  • SSDEEP

    49152:h1Os2a+y5xECQXXb/tUkOHelsTTCjqYxqw:h1OdtBOHSbR

Malware Config

Targets

    • Target

      f49bd8372dfaaa003cf00b71ce8545a4b7e365b208fe1bf3c445ae8c117ba944

    • Size

      2.1MB

    • MD5

      717e2baa66a5c4c78377f26cd324c13b

    • SHA1

      f964823296fc2ef23bd9cca1109ef47f489e8fac

    • SHA256

      f49bd8372dfaaa003cf00b71ce8545a4b7e365b208fe1bf3c445ae8c117ba944

    • SHA512

      140de606a5039eed53329edaabeecce7368023ff859d2eebc3275a45b8b96a98b8c4a93ccd48f33ee726ce7a918b60a9590435ebe47a8b3cd1c13d7b4121170f

    • SSDEEP

      49152:h1Os2a+y5xECQXXb/tUkOHelsTTCjqYxqw:h1OdtBOHSbR

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks