Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b7fe14058e8415478159dd459ea7e84eb9c0c9449cc51fbf2925bfa712f19c20.zip

  • Size

    2.6MB

  • Sample

    230321-rt9b6aah74

  • MD5

    48c4a9051a4ba40898b8a9f39782a863

  • SHA1

    6b003d39f3698c236a98d3160ec6f2ed62c80f4e

  • SHA256

    cc61e30b7c3db8c85c33cbab14175cb6869fe124018bc47f7d39e3dc6d592703

  • SHA512

    7327ef7dd03c2397ebd03122fcd44dc1e733f905c901688dc9d81c161519e0f78c465995e9b77da36ee5aa0392aed45162d659ae5509b1afadbe96c076b00e15

  • SSDEEP

    49152:1B/dLrvDOr+r4HLt2mZSJLooF5o1oZkim3/tYPn1Y7OOPI/Mx4UwqQivXps:1DDqwrJsoHouZbm31CcR5x4Zhiva

Score
8/10

Malware Config

Targets

    • Target

      b7fe14058e8415478159dd459ea7e84eb9c0c9449cc51fbf2925bfa712f19c20.exe

    • Size

      2.7MB

    • MD5

      7f1afbb1f303fa7825609d870f970c75

    • SHA1

      fdc8eaa2258d1e385993b6c69b48685dc766de07

    • SHA256

      b7fe14058e8415478159dd459ea7e84eb9c0c9449cc51fbf2925bfa712f19c20

    • SHA512

      4ab6cbf7008aeaf06ee2c5214d8becfa152def1fa61823177506401404edd1da2ad0e92555a0d61d1b087c2f456b56a08f65e2969b0c807b9a0e0c05039167b4

    • SSDEEP

      49152:DmFGB6jgk0erMz6z7SNUbaHrzC+3FbbmxUZJmZjPS3KDBorqoyT/SVk:CFGB0gZmWOyu+VbbxrUPoKDBorq1SVk

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v6

Tasks