Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    675f7fec5e1461556bbd7ca0975f77a38f6972a0721baa70e434b35c004acbf2

  • Size

    2.1MB

  • Sample

    221125-yzyk6scd46

  • MD5

    71099f601ede4d4c84019fd3cf57b322

  • SHA1

    626323200b9fb8ccc2703c654064f1650a68bdda

  • SHA256

    675f7fec5e1461556bbd7ca0975f77a38f6972a0721baa70e434b35c004acbf2

  • SHA512

    d1124e2b131e9b0037e760e935aed00b9b5c4b5fed918a0c3f6cd4031c163ee6556f731d2f540f083d492ee21577df86b87e6254ca2bbead82bdf0f70859e11e

  • SSDEEP

    49152:h1OsMNB2tcyUoc3slSeZrg1JclQ35sFDRa:h1Ot36Eoc3UK0b4

Malware Config

Targets

    • Target

      675f7fec5e1461556bbd7ca0975f77a38f6972a0721baa70e434b35c004acbf2

    • Size

      2.1MB

    • MD5

      71099f601ede4d4c84019fd3cf57b322

    • SHA1

      626323200b9fb8ccc2703c654064f1650a68bdda

    • SHA256

      675f7fec5e1461556bbd7ca0975f77a38f6972a0721baa70e434b35c004acbf2

    • SHA512

      d1124e2b131e9b0037e760e935aed00b9b5c4b5fed918a0c3f6cd4031c163ee6556f731d2f540f083d492ee21577df86b87e6254ca2bbead82bdf0f70859e11e

    • SSDEEP

      49152:h1OsMNB2tcyUoc3slSeZrg1JclQ35sFDRa:h1Ot36Eoc3UK0b4

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks