Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c5aa9a32cf6f6c8a4df36aa046b25eeed18a1bd431d649f1b9f1f14adfaeac7c

  • Size

    200KB

  • Sample

    221202-a4vhbabf2t

  • MD5

    88972def48509718b01d7ffb2085ca98

  • SHA1

    36282d02f81f9b72bb7a71d97597d3df213daa82

  • SHA256

    c5aa9a32cf6f6c8a4df36aa046b25eeed18a1bd431d649f1b9f1f14adfaeac7c

  • SHA512

    225f4a236e94eaf6cf6bafcc92f1a63cd44ac73347947e04bdc9672321c34ca1b5a764c606caeccca058917edec8ce7c5e7b54c865c5ddd6c20be20ececafe2d

  • SSDEEP

    3072:IsRPRkyeIKDWx85IOlKeJVos/8eRwXiUUAdV95I4Rp+LH1xrl3Ez8ub8Xr7:IsRPRkdIKCC0ef//uXltKc+LVsz9b8

Malware Config

Targets

    • Target

      c5aa9a32cf6f6c8a4df36aa046b25eeed18a1bd431d649f1b9f1f14adfaeac7c

    • Size

      200KB

    • MD5

      88972def48509718b01d7ffb2085ca98

    • SHA1

      36282d02f81f9b72bb7a71d97597d3df213daa82

    • SHA256

      c5aa9a32cf6f6c8a4df36aa046b25eeed18a1bd431d649f1b9f1f14adfaeac7c

    • SHA512

      225f4a236e94eaf6cf6bafcc92f1a63cd44ac73347947e04bdc9672321c34ca1b5a764c606caeccca058917edec8ce7c5e7b54c865c5ddd6c20be20ececafe2d

    • SSDEEP

      3072:IsRPRkyeIKDWx85IOlKeJVos/8eRwXiUUAdV95I4Rp+LH1xrl3Ez8ub8Xr7:IsRPRkdIKCC0ef//uXltKc+LVsz9b8

    Score
    8/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks