Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6e3991f83628cb0a161640691643c01c4b1575ef05d846976084d622fa721d8e

  • Size

    1.4MB

  • Sample

    230419-h8ge9aah3z

  • MD5

    f00a85bd494cda14f5de024ef1f1fac9

  • SHA1

    f4b19ad4a2a54a6a38094cb0a0336221f50fc78c

  • SHA256

    6e3991f83628cb0a161640691643c01c4b1575ef05d846976084d622fa721d8e

  • SHA512

    b7a81c0c0e5a14cbabd5a37d11e523c03c19cc1d7cc64ba42d7097a6a411c063e93452cfa79b02e8e65f3b7a784aae23b972be9d588f48886424aec49e3a5d9a

  • SSDEEP

    24576:sGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRz35hESI:npEUIvU0N9jkpjweXt77D5KR

Malware Config

Extracted

Family

socelars

C2

https://hdbywe.s3.us-west-2.amazonaws.com/sadfe410/

Targets

    • Target

      6e3991f83628cb0a161640691643c01c4b1575ef05d846976084d622fa721d8e

    • Size

      1.4MB

    • MD5

      f00a85bd494cda14f5de024ef1f1fac9

    • SHA1

      f4b19ad4a2a54a6a38094cb0a0336221f50fc78c

    • SHA256

      6e3991f83628cb0a161640691643c01c4b1575ef05d846976084d622fa721d8e

    • SHA512

      b7a81c0c0e5a14cbabd5a37d11e523c03c19cc1d7cc64ba42d7097a6a411c063e93452cfa79b02e8e65f3b7a784aae23b972be9d588f48886424aec49e3a5d9a

    • SSDEEP

      24576:sGU0HpRGUYHKaPUM0Hqy69NgA+iVvRuPpND5TqJ6y5eXt7dRz35hESI:npEUIvU0N9jkpjweXt77D5KR

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v6

Tasks