Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c2a2fcf04e42cc3aa1d32cbcbbdad1f0c52e421690ffe0db4db35789cd2d3b62

  • Size

    165KB

  • Sample

    221205-g9n12shf4z

  • MD5

    669110614ddb55c7fe76ed066c2d83c9

  • SHA1

    18e03e42063d5a5ba34c5dc099ce48fc21e855b1

  • SHA256

    c2a2fcf04e42cc3aa1d32cbcbbdad1f0c52e421690ffe0db4db35789cd2d3b62

  • SHA512

    eb219b7d4f3d91c9bd0915aaa4df861411a0d443552339f452fd75189df03dc0b75f4cc13bfa67cbe8ae8ed3bbe224c427fe110ad27793db876c66117367ac98

  • SSDEEP

    3072:ReGlO/laYP9Af/iyXYi/lEcZQcis1ejEBid076EHPsmL5LCTm0u974KBrxxzYNv:ReGlWQYPByIiWhNKLBTjt5eK393Brxx6

Malware Config

Targets

    • Target

      c2a2fcf04e42cc3aa1d32cbcbbdad1f0c52e421690ffe0db4db35789cd2d3b62

    • Size

      165KB

    • MD5

      669110614ddb55c7fe76ed066c2d83c9

    • SHA1

      18e03e42063d5a5ba34c5dc099ce48fc21e855b1

    • SHA256

      c2a2fcf04e42cc3aa1d32cbcbbdad1f0c52e421690ffe0db4db35789cd2d3b62

    • SHA512

      eb219b7d4f3d91c9bd0915aaa4df861411a0d443552339f452fd75189df03dc0b75f4cc13bfa67cbe8ae8ed3bbe224c427fe110ad27793db876c66117367ac98

    • SSDEEP

      3072:ReGlO/laYP9Af/iyXYi/lEcZQcis1ejEBid076EHPsmL5LCTm0u974KBrxxzYNv:ReGlWQYPByIiWhNKLBTjt5eK393Brxx6

    • Modifies WinLogon for persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks