Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    201510c2fb7bd86e61d220e72625750024c6c528df09774bb4a011193cdb5342

  • Size

    212KB

  • Sample

    230417-jld72sfa71

  • MD5

    f2d9283406e628606230f215a7e9b833

  • SHA1

    40b752d15b9533bde9fbed35e8ff78407295de34

  • SHA256

    201510c2fb7bd86e61d220e72625750024c6c528df09774bb4a011193cdb5342

  • SHA512

    54bf2c661c0e4869f428e65b979ec4ac3dce365f351486efb58b371d7484f7d935128d405651b135a1edeadbd9740810a92fa7782b548f743d3c89978e8c4e02

  • SSDEEP

    3072:SsiBKtdBXv5p2WUgNEmn6q0Wn2UI7efdssA289A5X9I7iMOsEV:XEG5pvEm6qHn2UI7mdssA2VO7iMbEV

Malware Config

Targets

    • Target

      201510c2fb7bd86e61d220e72625750024c6c528df09774bb4a011193cdb5342

    • Size

      212KB

    • MD5

      f2d9283406e628606230f215a7e9b833

    • SHA1

      40b752d15b9533bde9fbed35e8ff78407295de34

    • SHA256

      201510c2fb7bd86e61d220e72625750024c6c528df09774bb4a011193cdb5342

    • SHA512

      54bf2c661c0e4869f428e65b979ec4ac3dce365f351486efb58b371d7484f7d935128d405651b135a1edeadbd9740810a92fa7782b548f743d3c89978e8c4e02

    • SSDEEP

      3072:SsiBKtdBXv5p2WUgNEmn6q0Wn2UI7efdssA289A5X9I7iMOsEV:XEG5pvEm6qHn2UI7mdssA2VO7iMbEV

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks