Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8ad32fa794edea97fcd1a27dc8f3335c19284dbbcd982ddf8c2051bc4bad0b07

  • Size

    829KB

  • Sample

    221201-lcqktshe91

  • MD5

    01df07e97f6c63e568e1a66ade389640

  • SHA1

    08ca1396b18704ab19819477a23658423f7d5d96

  • SHA256

    8ad32fa794edea97fcd1a27dc8f3335c19284dbbcd982ddf8c2051bc4bad0b07

  • SHA512

    f6fed611aa49f90aecbc1db8df73cf5778bd67d806b5ac362eafe2c0cb5f4a1468355f7a0552dc3b42d5749ebf91dad1e114492085e22a72ffad954b38379111

  • SSDEEP

    12288:S443XWTM3IGx6LIN1WMZrorgOMq3uCz5fGojdOJl1IOp3ima1EwLj5nAZ04A:gXuMb1orgZMdOJl1rAv1M4

Malware Config

Targets

    • Target

      8ad32fa794edea97fcd1a27dc8f3335c19284dbbcd982ddf8c2051bc4bad0b07

    • Size

      829KB

    • MD5

      01df07e97f6c63e568e1a66ade389640

    • SHA1

      08ca1396b18704ab19819477a23658423f7d5d96

    • SHA256

      8ad32fa794edea97fcd1a27dc8f3335c19284dbbcd982ddf8c2051bc4bad0b07

    • SHA512

      f6fed611aa49f90aecbc1db8df73cf5778bd67d806b5ac362eafe2c0cb5f4a1468355f7a0552dc3b42d5749ebf91dad1e114492085e22a72ffad954b38379111

    • SSDEEP

      12288:S443XWTM3IGx6LIN1WMZrorgOMq3uCz5fGojdOJl1IOp3ima1EwLj5nAZ04A:gXuMb1orgZMdOJl1rAv1M4

    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    • Enumerates VirtualBox registry keys

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks