Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f1c054ab41a9c72398a0462e9f8f79a91be9182a6293b49f8a5c2b57e210d4be

  • Size

    2.1MB

  • Sample

    221125-zcgvksgc3z

  • MD5

    13a17bfd387df6950d7b4e859853f71d

  • SHA1

    0422a085f84795185a04a23d96f5ce2f3dee484d

  • SHA256

    f1c054ab41a9c72398a0462e9f8f79a91be9182a6293b49f8a5c2b57e210d4be

  • SHA512

    de423a06ef1070594242dba0ec22349bbf44341b7391edd66c5d4bb28f011658e772447da3e4316b68c71dac89e5d0438884d84b85009459ea1bff55f1cc68f5

  • SSDEEP

    49152:h1OsUFo42dYDe4NCS039DyklmfqyFSFsAuz:h1O7Dp6NykzON

Malware Config

Targets

    • Target

      f1c054ab41a9c72398a0462e9f8f79a91be9182a6293b49f8a5c2b57e210d4be

    • Size

      2.1MB

    • MD5

      13a17bfd387df6950d7b4e859853f71d

    • SHA1

      0422a085f84795185a04a23d96f5ce2f3dee484d

    • SHA256

      f1c054ab41a9c72398a0462e9f8f79a91be9182a6293b49f8a5c2b57e210d4be

    • SHA512

      de423a06ef1070594242dba0ec22349bbf44341b7391edd66c5d4bb28f011658e772447da3e4316b68c71dac89e5d0438884d84b85009459ea1bff55f1cc68f5

    • SSDEEP

      49152:h1OsUFo42dYDe4NCS039DyklmfqyFSFsAuz:h1O7Dp6NykzON

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks