Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9267df7ee3ac9e7aed3290f22538ff7d9d399614134fbcf335f5e6252a990507

  • Size

    2.1MB

  • Sample

    221125-yxq4bacb93

  • MD5

    ba2d42ac1ff0e1ed4b572d047a5b451e

  • SHA1

    9a921c3fc0e652e7f2f137e067c7987b132b5bfa

  • SHA256

    9267df7ee3ac9e7aed3290f22538ff7d9d399614134fbcf335f5e6252a990507

  • SHA512

    4ce986e7e2372aba352a71e16f65eb147b5583b1f9fa1d4b3dcd3a8ba58cd3a5a61da708c1caf3b4036787bd2d4c22fdcd5a2e5f75c3400c5907f0dce68ed5a0

  • SSDEEP

    24576:h1OYdaO7zoi5Fm2qmA+L4zKWQt0moNdqNFSj8y0j9jtaJB5ZuUUr2YGnEQ/VfVO:h1OslmLmVJWQt0mozqW78bSVfVO

Malware Config

Targets

    • Target

      9267df7ee3ac9e7aed3290f22538ff7d9d399614134fbcf335f5e6252a990507

    • Size

      2.1MB

    • MD5

      ba2d42ac1ff0e1ed4b572d047a5b451e

    • SHA1

      9a921c3fc0e652e7f2f137e067c7987b132b5bfa

    • SHA256

      9267df7ee3ac9e7aed3290f22538ff7d9d399614134fbcf335f5e6252a990507

    • SHA512

      4ce986e7e2372aba352a71e16f65eb147b5583b1f9fa1d4b3dcd3a8ba58cd3a5a61da708c1caf3b4036787bd2d4c22fdcd5a2e5f75c3400c5907f0dce68ed5a0

    • SSDEEP

      24576:h1OYdaO7zoi5Fm2qmA+L4zKWQt0moNdqNFSj8y0j9jtaJB5ZuUUr2YGnEQ/VfVO:h1OslmLmVJWQt0mozqW78bSVfVO

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks