Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c5e0bf941c0104db500986939162d9c5e4e4cae21fe2e7cc78b2a8164a01889f

  • Size

    296KB

  • Sample

    221204-ft3c3ahh26

  • MD5

    fef18010402c5347fe8c7a5a98f0982b

  • SHA1

    ef82499b601e75d0ec7d737d8fa2858c1d705bb3

  • SHA256

    c5e0bf941c0104db500986939162d9c5e4e4cae21fe2e7cc78b2a8164a01889f

  • SHA512

    7fb63b4d52fbdd534125dae441a11226b7f318560a72c183cd5f12fea7f89d5c5018fed6b50dc319b6f9d75415ffbb0c3edecf7ee917469a84ccc269ae08c624

  • SSDEEP

    6144:WhLJznPSO7mq+vtWEmtGDCv/4uLwGGLTW3yyEPy:WXaOomtGDCloLi9EPy

Score
8/10

Malware Config

Targets

    • Target

      c5e0bf941c0104db500986939162d9c5e4e4cae21fe2e7cc78b2a8164a01889f

    • Size

      296KB

    • MD5

      fef18010402c5347fe8c7a5a98f0982b

    • SHA1

      ef82499b601e75d0ec7d737d8fa2858c1d705bb3

    • SHA256

      c5e0bf941c0104db500986939162d9c5e4e4cae21fe2e7cc78b2a8164a01889f

    • SHA512

      7fb63b4d52fbdd534125dae441a11226b7f318560a72c183cd5f12fea7f89d5c5018fed6b50dc319b6f9d75415ffbb0c3edecf7ee917469a84ccc269ae08c624

    • SSDEEP

      6144:WhLJznPSO7mq+vtWEmtGDCv/4uLwGGLTW3yyEPy:WXaOomtGDCloLi9EPy

    Score
    8/10
    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks