Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ca18d8f10176a30d2ab7fd22e9d7b652562a65133f40c399ba995d0d61d4306f

  • Size

    249KB

  • Sample

    221129-nl53zsec26

  • MD5

    f8fb561df01237184f96069ea86c98e2

  • SHA1

    6ad4e44188c888140b18d163b0d3f4a36d179253

  • SHA256

    ca18d8f10176a30d2ab7fd22e9d7b652562a65133f40c399ba995d0d61d4306f

  • SHA512

    f6d8d6a1f1327a75983411bddce4e8c74dda401f5aec492e5698ec8490594e0caf5c4e58eca7a0c022a479d277213d9e6c1f7d554a49616d51311e0e1abf506c

  • SSDEEP

    6144:h1OgDPdkBAFZWjadD4s5Rg0wd4P3pD3lwkdrKHDIfUs:h1OgLdaOki3NlwlHDIfz

Malware Config

Targets

    • Target

      ca18d8f10176a30d2ab7fd22e9d7b652562a65133f40c399ba995d0d61d4306f

    • Size

      249KB

    • MD5

      f8fb561df01237184f96069ea86c98e2

    • SHA1

      6ad4e44188c888140b18d163b0d3f4a36d179253

    • SHA256

      ca18d8f10176a30d2ab7fd22e9d7b652562a65133f40c399ba995d0d61d4306f

    • SHA512

      f6d8d6a1f1327a75983411bddce4e8c74dda401f5aec492e5698ec8490594e0caf5c4e58eca7a0c022a479d277213d9e6c1f7d554a49616d51311e0e1abf506c

    • SSDEEP

      6144:h1OgDPdkBAFZWjadD4s5Rg0wd4P3pD3lwkdrKHDIfUs:h1OgLdaOki3NlwlHDIfz

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.