Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
9c5241e7710495c7a4bc1d797a08edbca91260995e4fbf4e723b91d9bf87529d
-
Size
1.1MB
-
Sample
230419-fnh28sgd64
-
MD5
d650e9f2c67b2f7bc27e2f4fff60f36a
-
SHA1
5babeb2855b4add5b4a853e48e53c8fe89206ee8
-
SHA256
9c5241e7710495c7a4bc1d797a08edbca91260995e4fbf4e723b91d9bf87529d
-
SHA512
e228c68c65e156ad7332c0d5a1f031ed7fb24a0c4175dbda88a07420c996565bfeff4f0456ea6e0194a1b10de88e39dacae60504fd543cd2fca3ce398820a84b
-
SSDEEP
24576:UyII9YQDsWCXtJGoh14NEvYs7265dgh0cu1cNJblm+:jIIGWNCXt7h1Cs20dg/u1cNrm
Malware Config
Targets
-
-
Target
9c5241e7710495c7a4bc1d797a08edbca91260995e4fbf4e723b91d9bf87529d
-
Size
1.1MB
-
MD5
d650e9f2c67b2f7bc27e2f4fff60f36a
-
SHA1
5babeb2855b4add5b4a853e48e53c8fe89206ee8
-
SHA256
9c5241e7710495c7a4bc1d797a08edbca91260995e4fbf4e723b91d9bf87529d
-
SHA512
e228c68c65e156ad7332c0d5a1f031ed7fb24a0c4175dbda88a07420c996565bfeff4f0456ea6e0194a1b10de88e39dacae60504fd543cd2fca3ce398820a84b
-
SSDEEP
24576:UyII9YQDsWCXtJGoh14NEvYs7265dgh0cu1cNJblm+:jIIGWNCXt7h1Cs20dg/u1cNrm
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-