Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    setup-istripper_LhZpt7k79Wju5Jv3wFDG.exe

  • Size

    66.3MB

  • Sample

    230205-p4443shd75

  • MD5

    a7a38894dc913edd5171e17c0f8800e1

  • SHA1

    bf66472e4bf3a58efc3410710c6502789cee138a

  • SHA256

    4a57d5940821785386807be9f04626bbadaad9f009e858ebda5708a5cf2ecbfe

  • SHA512

    28c71f6e4fb0cf04882d71e1a6c56b834cb2e3a7f0359215457d72868ae44cac9a636f103e1c3a90d9775360daddb27ce2a1829766f93c3785c101837074771c

  • SSDEEP

    1572864:DFo9m8tLOWOjE7ABoK6agKOzALc66HvdxQ1leBs9WLl91ZI:DFoIvjCcoK6fzALczPMEs98pZ

Malware Config

Targets

    • Target

      setup-istripper_LhZpt7k79Wju5Jv3wFDG.exe

    • Size

      66.3MB

    • MD5

      a7a38894dc913edd5171e17c0f8800e1

    • SHA1

      bf66472e4bf3a58efc3410710c6502789cee138a

    • SHA256

      4a57d5940821785386807be9f04626bbadaad9f009e858ebda5708a5cf2ecbfe

    • SHA512

      28c71f6e4fb0cf04882d71e1a6c56b834cb2e3a7f0359215457d72868ae44cac9a636f103e1c3a90d9775360daddb27ce2a1829766f93c3785c101837074771c

    • SSDEEP

      1572864:DFo9m8tLOWOjE7ABoK6agKOzALc66HvdxQ1leBs9WLl91ZI:DFoIvjCcoK6fzALczPMEs98pZ

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks