Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca

  • Size

    833KB

  • Sample

    221126-a94ceaag76

  • MD5

    c2d048ea998382f15fd1d3e94ebd3712

  • SHA1

    e6294f4091342a8bfe32b89087800d2f8596a631

  • SHA256

    d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca

  • SHA512

    e76506165951752613e12945fec456cdf7ad26a8cb345f54390699e8c19887ce8c006b85543af4ad5fdcc1c6f53194b2d7e4e894d6be6e179dc973adcef3ccc5

  • SSDEEP

    12288:2TABwhaHQNxbJzhyxBPtC7JS2udrc7JSJBSNV3SFGGKUC729D1SsEA:VegQbbpSBPoSlRc7MJENAFh+29DgsE

Malware Config

Targets

    • Target

      d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca

    • Size

      833KB

    • MD5

      c2d048ea998382f15fd1d3e94ebd3712

    • SHA1

      e6294f4091342a8bfe32b89087800d2f8596a631

    • SHA256

      d215031b2cee4fdb4e59b211ab725a545421d71758353c520b96d0c1af5073ca

    • SHA512

      e76506165951752613e12945fec456cdf7ad26a8cb345f54390699e8c19887ce8c006b85543af4ad5fdcc1c6f53194b2d7e4e894d6be6e179dc973adcef3ccc5

    • SSDEEP

      12288:2TABwhaHQNxbJzhyxBPtC7JS2udrc7JSJBSNV3SFGGKUC729D1SsEA:VegQbbpSBPoSlRc7MJENAFh+29DgsE

    • ISR Stealer

      ISR Stealer is a modified version of Hackhound Stealer written in visual basic.

    • ISR Stealer payload

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks