Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    74fa7011fa8493d7f6916a0b4e20d1e325adb4e028b380de2d8508518d1a25be

  • Size

    250KB

  • Sample

    221129-np6tpahc8z

  • MD5

    d69dae778c843542ce1449d6c35eec97

  • SHA1

    a9c83cf37ff2245019d069b3642bea303414b26c

  • SHA256

    74fa7011fa8493d7f6916a0b4e20d1e325adb4e028b380de2d8508518d1a25be

  • SHA512

    0ffd5f7c4078c5ad696d2fc1b984e2925f720f72873cf07187228d1ab10dc74a19ba2d9a706132d3dcc1f5333f23c7325d4a3af18dfc7159af320006d32a7115

  • SSDEEP

    6144:h1OgDPdkBAFZWjadD4s5NzeffsgbuwrCVo/32+Ggj:h1OgLdaONzelbjT/38gj

Malware Config

Targets

    • Target

      74fa7011fa8493d7f6916a0b4e20d1e325adb4e028b380de2d8508518d1a25be

    • Size

      250KB

    • MD5

      d69dae778c843542ce1449d6c35eec97

    • SHA1

      a9c83cf37ff2245019d069b3642bea303414b26c

    • SHA256

      74fa7011fa8493d7f6916a0b4e20d1e325adb4e028b380de2d8508518d1a25be

    • SHA512

      0ffd5f7c4078c5ad696d2fc1b984e2925f720f72873cf07187228d1ab10dc74a19ba2d9a706132d3dcc1f5333f23c7325d4a3af18dfc7159af320006d32a7115

    • SSDEEP

      6144:h1OgDPdkBAFZWjadD4s5NzeffsgbuwrCVo/32+Ggj:h1OgLdaONzelbjT/38gj

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks