Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0f84367600833362b442da4bd769761b32644606f2691406bd5b766ff8a5a1ec
-
Size
1.5MB
-
Sample
230420-fj1fqahf5v
-
MD5
3055bc094463df8f153c6ea7f3e46b0b
-
SHA1
a734806e903f67b3dcea92b190809afe226a6eb2
-
SHA256
0f84367600833362b442da4bd769761b32644606f2691406bd5b766ff8a5a1ec
-
SHA512
ff039c4a951e310c19579a0db7fc3b961e16dc6c99c3db3333f0ef598c8a6c840c19547412ac0e6b1e13ad25e2bee2e6ec8a2e100783421da24fe0dc65423910
-
SSDEEP
24576:Ryt8taaSyJjGKl5AvtvL0iIpYHE7HAy9q0e0v8HRgNkBHia47J5rAYwAFtDw9M:EtQSyxHAvtT0iyYuAyqPxrNiL5cYJfw
Malware Config
Targets
-
-
Target
0f84367600833362b442da4bd769761b32644606f2691406bd5b766ff8a5a1ec
-
Size
1.5MB
-
MD5
3055bc094463df8f153c6ea7f3e46b0b
-
SHA1
a734806e903f67b3dcea92b190809afe226a6eb2
-
SHA256
0f84367600833362b442da4bd769761b32644606f2691406bd5b766ff8a5a1ec
-
SHA512
ff039c4a951e310c19579a0db7fc3b961e16dc6c99c3db3333f0ef598c8a6c840c19547412ac0e6b1e13ad25e2bee2e6ec8a2e100783421da24fe0dc65423910
-
SSDEEP
24576:Ryt8taaSyJjGKl5AvtvL0iIpYHE7HAy9q0e0v8HRgNkBHia47J5rAYwAFtDw9M:EtQSyxHAvtT0iyYuAyqPxrNiL5cYJfw
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-