Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eac1fd50499392c1e00c928b94cce66222ad45fc05e108370ff8ccc5fb4ccbe9

  • Size

    2.1MB

  • Sample

    221125-zetxxsgd8y

  • MD5

    4cb5e34fbb6f0961df53614a40afecac

  • SHA1

    23fdbf476b766b443efe8b60205823cb978c8303

  • SHA256

    eac1fd50499392c1e00c928b94cce66222ad45fc05e108370ff8ccc5fb4ccbe9

  • SHA512

    bb1a486473da026584fa41927f8444d5220f3496b8596ddeefdc819f1c2f4536e3b19f54cfeecb7cebc9963c07b491aded4ec61d4355de7bdabcbef00dab6e82

  • SSDEEP

    49152:h1Os1hvaZG1MVEtzijkTvu2x/uw4B8FHFF6d:h1OivaxMziy3y

Malware Config

Targets

    • Target

      eac1fd50499392c1e00c928b94cce66222ad45fc05e108370ff8ccc5fb4ccbe9

    • Size

      2.1MB

    • MD5

      4cb5e34fbb6f0961df53614a40afecac

    • SHA1

      23fdbf476b766b443efe8b60205823cb978c8303

    • SHA256

      eac1fd50499392c1e00c928b94cce66222ad45fc05e108370ff8ccc5fb4ccbe9

    • SHA512

      bb1a486473da026584fa41927f8444d5220f3496b8596ddeefdc819f1c2f4536e3b19f54cfeecb7cebc9963c07b491aded4ec61d4355de7bdabcbef00dab6e82

    • SSDEEP

      49152:h1Os1hvaZG1MVEtzijkTvu2x/uw4B8FHFF6d:h1OivaxMziy3y

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks