Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    933d74ff8619fec658ef6c115cc0f0095cef36148922ccddbd7900cbf12afef8.exe

  • Size

    383KB

  • Sample

    230309-zpvl7sac45

  • MD5

    169252f7614bf6c6b43e8532e6623d57

  • SHA1

    30e2c45ff71eb78c7d1a1032b3b2c46c9d87e24e

  • SHA256

    933d74ff8619fec658ef6c115cc0f0095cef36148922ccddbd7900cbf12afef8

  • SHA512

    d116c247d1e3b7f7025dc01e100043a62b635dbe04f4ae0b3f94ba17936ba859b7edb321ac54fa26a1016ee97555a43fc536290b334b84fd0c2b124c5958b1ab

  • SSDEEP

    6144:8RzMgpY8bXFHW1FbwwEHidUoagoW2C9cuqBGI4Zq6mYlGVYJNfNQFoQGt485VYg+:qDRbXFHW1+K2UWBGIymYeYJheFOvd+

Malware Config

Targets

    • Target

      933d74ff8619fec658ef6c115cc0f0095cef36148922ccddbd7900cbf12afef8.exe

    • Size

      383KB

    • MD5

      169252f7614bf6c6b43e8532e6623d57

    • SHA1

      30e2c45ff71eb78c7d1a1032b3b2c46c9d87e24e

    • SHA256

      933d74ff8619fec658ef6c115cc0f0095cef36148922ccddbd7900cbf12afef8

    • SHA512

      d116c247d1e3b7f7025dc01e100043a62b635dbe04f4ae0b3f94ba17936ba859b7edb321ac54fa26a1016ee97555a43fc536290b334b84fd0c2b124c5958b1ab

    • SSDEEP

      6144:8RzMgpY8bXFHW1FbwwEHidUoagoW2C9cuqBGI4Zq6mYlGVYJNfNQFoQGt485VYg+:qDRbXFHW1+K2UWBGIymYeYJheFOvd+

    • Drops file in Drivers directory

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops file in System32 directory

    • Sets desktop wallpaper using registry

MITRE ATT&CK Enterprise v6

Tasks