Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    809d5f3432c33cb3743c45178e8136ba43fe7058232694aab19e7d2674f6e988

  • Size

    1.1MB

  • Sample

    230420-jl9nysgd49

  • MD5

    04a5152da06190db2d11b3fdb8be7f63

  • SHA1

    dba67fed7755524ef1ded36807fdfb9bac240918

  • SHA256

    809d5f3432c33cb3743c45178e8136ba43fe7058232694aab19e7d2674f6e988

  • SHA512

    4b8158fdd3a960a8ca7df590ac85b1fbf62ddf1a87eecc5a550d76f98719af99bd792a518469584b3981eb592a1c65c2a91b15494584273f66666b23fd78beaf

  • SSDEEP

    24576:SyXAO9CAkdQ1LXRdEXyHyP3UpIna5KNWdcUburqtdI71H0:5XL01y1LCyHyPEpInVNeTuWty

Malware Config

Targets

    • Target

      809d5f3432c33cb3743c45178e8136ba43fe7058232694aab19e7d2674f6e988

    • Size

      1.1MB

    • MD5

      04a5152da06190db2d11b3fdb8be7f63

    • SHA1

      dba67fed7755524ef1ded36807fdfb9bac240918

    • SHA256

      809d5f3432c33cb3743c45178e8136ba43fe7058232694aab19e7d2674f6e988

    • SHA512

      4b8158fdd3a960a8ca7df590ac85b1fbf62ddf1a87eecc5a550d76f98719af99bd792a518469584b3981eb592a1c65c2a91b15494584273f66666b23fd78beaf

    • SSDEEP

      24576:SyXAO9CAkdQ1LXRdEXyHyP3UpIna5KNWdcUburqtdI71H0:5XL01y1LCyHyPEpInVNeTuWty

    • Modifies Windows Defender Real-time Protection settings

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Windows security modification

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks