Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c44fe0d0992a9e11e9266e766801b2b9420a626b92b082699ebd2ca7330d6ef3

  • Size

    255KB

  • Sample

    221202-btbg5adg9z

  • MD5

    e33d3d755ce2d649695a65bf683f6eb1

  • SHA1

    2df92344c7458c6cddad71d4dbb8e96c098754fd

  • SHA256

    c44fe0d0992a9e11e9266e766801b2b9420a626b92b082699ebd2ca7330d6ef3

  • SHA512

    11db216e319d9a57004b23005d8ef519fd395f7468d629ae5e2434d4197f63c92528e1031a00ffe5ca14316aa0637b361e6d357e5ac75280fb399eaa46e6dd5a

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4sPOd406gHzsJgFFtAC7eYj8yy:91OgLda14bgTbmCd8yy

Malware Config

Targets

    • Target

      c44fe0d0992a9e11e9266e766801b2b9420a626b92b082699ebd2ca7330d6ef3

    • Size

      255KB

    • MD5

      e33d3d755ce2d649695a65bf683f6eb1

    • SHA1

      2df92344c7458c6cddad71d4dbb8e96c098754fd

    • SHA256

      c44fe0d0992a9e11e9266e766801b2b9420a626b92b082699ebd2ca7330d6ef3

    • SHA512

      11db216e319d9a57004b23005d8ef519fd395f7468d629ae5e2434d4197f63c92528e1031a00ffe5ca14316aa0637b361e6d357e5ac75280fb399eaa46e6dd5a

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4sPOd406gHzsJgFFtAC7eYj8yy:91OgLda14bgTbmCd8yy

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v6

Tasks