Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4ed8028403168fb8a352524704c44baf.exe

  • Size

    231KB

  • Sample

    221226-fx5mlace42

  • MD5

    4ed8028403168fb8a352524704c44baf

  • SHA1

    5b3f66f71ed5f1f29865c52188720f50c1f72a53

  • SHA256

    d91a27a04ac9e4fc3ddfbb37372f0587cb62b8be0ec0cf5afc52a2c4c8ca4ee5

  • SHA512

    29b3efcc25c3ca7c446201526bb5e0fa1e9064bd7396da5b8a6002487c65752d2cb51c6b8cce8b85878c57b14486aec9c852635c38bb6006a9f96b8f23ce999e

  • SSDEEP

    6144:zJ9LMqgZOl6VHtdr/Qfrjqet5tK85z/bIr:zv4JcI/EXtFL8r

Malware Config

Targets

    • Target

      4ed8028403168fb8a352524704c44baf.exe

    • Size

      231KB

    • MD5

      4ed8028403168fb8a352524704c44baf

    • SHA1

      5b3f66f71ed5f1f29865c52188720f50c1f72a53

    • SHA256

      d91a27a04ac9e4fc3ddfbb37372f0587cb62b8be0ec0cf5afc52a2c4c8ca4ee5

    • SHA512

      29b3efcc25c3ca7c446201526bb5e0fa1e9064bd7396da5b8a6002487c65752d2cb51c6b8cce8b85878c57b14486aec9c852635c38bb6006a9f96b8f23ce999e

    • SSDEEP

      6144:zJ9LMqgZOl6VHtdr/Qfrjqet5tK85z/bIr:zv4JcI/EXtFL8r

    • Downloads MZ/PE file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks