Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b1191d3a2ab782a8dc42cef7ecd6a1878e2f790b2a5407c5b135573cf1179a94

  • Size

    2.1MB

  • Sample

    221125-yvz87sca65

  • MD5

    4d08a5908edf386cf0af9ce1ae021539

  • SHA1

    22ce2c944a43d984c0fb698d8c7b3b76d88ff3fe

  • SHA256

    b1191d3a2ab782a8dc42cef7ecd6a1878e2f790b2a5407c5b135573cf1179a94

  • SHA512

    aba37d9618f5c945939daea011a64f9738f52679f0dc579ad5d06f12559c7cc1dea7ed1762449b07e7c31b518f1de26a3cfbbfad33d42cd99a9f6d84a1c456bb

  • SSDEEP

    49152:h1OsJBNPM6n5oHCZdw3CyvHht6wqM7M1cHf:h1OoBjn5oHCZMDvHhrqMM0

Malware Config

Targets

    • Target

      b1191d3a2ab782a8dc42cef7ecd6a1878e2f790b2a5407c5b135573cf1179a94

    • Size

      2.1MB

    • MD5

      4d08a5908edf386cf0af9ce1ae021539

    • SHA1

      22ce2c944a43d984c0fb698d8c7b3b76d88ff3fe

    • SHA256

      b1191d3a2ab782a8dc42cef7ecd6a1878e2f790b2a5407c5b135573cf1179a94

    • SHA512

      aba37d9618f5c945939daea011a64f9738f52679f0dc579ad5d06f12559c7cc1dea7ed1762449b07e7c31b518f1de26a3cfbbfad33d42cd99a9f6d84a1c456bb

    • SSDEEP

      49152:h1OsJBNPM6n5oHCZdw3CyvHht6wqM7M1cHf:h1OoBjn5oHCZMDvHhrqMM0

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks