Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5997de12ae6455eb720dc7b050c4b64425e6b1aaf937416647706223f19aaebc
-
Size
1.5MB
-
Sample
230418-31kg6agg91
-
MD5
ac3b5cc0e34000fb9af1f19d3b26cb9e
-
SHA1
ce63e6452945e93cfc9850ef7cd6e96283143cc9
-
SHA256
5997de12ae6455eb720dc7b050c4b64425e6b1aaf937416647706223f19aaebc
-
SHA512
b521e0d0be47f917f12c8ca1d9fc9c3f1722a73292e37bc2a414537171e58f9f9f3d3b1b4bd798e6b70b9dc265b128985a77a2f884099b5f75e836ebfa083467
-
SSDEEP
49152:tvZThN0/DXkT1jp47LNdgn7YhQ3sJihBgdrDDoECKn:/TAbkT1a7LNdgoPSgdrDDZCG
Malware Config
Targets
-
-
Target
5997de12ae6455eb720dc7b050c4b64425e6b1aaf937416647706223f19aaebc
-
Size
1.5MB
-
MD5
ac3b5cc0e34000fb9af1f19d3b26cb9e
-
SHA1
ce63e6452945e93cfc9850ef7cd6e96283143cc9
-
SHA256
5997de12ae6455eb720dc7b050c4b64425e6b1aaf937416647706223f19aaebc
-
SHA512
b521e0d0be47f917f12c8ca1d9fc9c3f1722a73292e37bc2a414537171e58f9f9f3d3b1b4bd798e6b70b9dc265b128985a77a2f884099b5f75e836ebfa083467
-
SSDEEP
49152:tvZThN0/DXkT1jp47LNdgn7YhQ3sJihBgdrDDoECKn:/TAbkT1a7LNdgoPSgdrDDZCG
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-