Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c4f3b516683726b5e519093e8211d5d33b3c443ef1efe23e116a3dc102f2161f

  • Size

    2.0MB

  • Sample

    221125-zsm2jahe6x

  • MD5

    7ed3b7c13b6cc279102ea2d7feb2f80c

  • SHA1

    6cee13b5b375e1774248b8764381e613a0b487d9

  • SHA256

    c4f3b516683726b5e519093e8211d5d33b3c443ef1efe23e116a3dc102f2161f

  • SHA512

    9d08374e90e9311ef9f5d3374be47e71fcb52c1468fad4ba07ffd8d0f4c319ca613b6715e8dca6d34b392e273fa00ae102e24efa1c4901947b0c833bbf26c3da

  • SSDEEP

    49152:h1Os5Upag+Qk/+ouXBVm/KLp0f5fR6Tu3PHYwxzILQJsa77:h1OOUpAWouXBVm/KLp0+Tu3j7

Malware Config

Targets

    • Target

      c4f3b516683726b5e519093e8211d5d33b3c443ef1efe23e116a3dc102f2161f

    • Size

      2.0MB

    • MD5

      7ed3b7c13b6cc279102ea2d7feb2f80c

    • SHA1

      6cee13b5b375e1774248b8764381e613a0b487d9

    • SHA256

      c4f3b516683726b5e519093e8211d5d33b3c443ef1efe23e116a3dc102f2161f

    • SHA512

      9d08374e90e9311ef9f5d3374be47e71fcb52c1468fad4ba07ffd8d0f4c319ca613b6715e8dca6d34b392e273fa00ae102e24efa1c4901947b0c833bbf26c3da

    • SSDEEP

      49152:h1Os5Upag+Qk/+ouXBVm/KLp0f5fR6Tu3PHYwxzILQJsa77:h1OOUpAWouXBVm/KLp0+Tu3j7

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks