Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    74cb900edc37220d74dce6b454f74282dc07df9869be0c0c8bcec37496922685

  • Size

    747KB

  • Sample

    230424-2v7j3agg61

  • MD5

    1b6f307f13854e1abe2d2535ed283145

  • SHA1

    c012d7e874006a63dfcadf1c9b9762579d4edd2c

  • SHA256

    74cb900edc37220d74dce6b454f74282dc07df9869be0c0c8bcec37496922685

  • SHA512

    9ca115bd959796f5825750cdfbb5f8e16f86823b3df5fd32751807ddd873d81fab9da593a20e32c42696b550e08e239f45e1140389ff61e1e867ad38122ad0d1

  • SSDEEP

    12288:iy90I2+QYjW/nfraproGzW50+naUgm+smZzUh+2QEb54wD2B1e:iyFy/nfurx43nMm+smxUs27b5Z6I

Malware Config

Targets

    • Target

      74cb900edc37220d74dce6b454f74282dc07df9869be0c0c8bcec37496922685

    • Size

      747KB

    • MD5

      1b6f307f13854e1abe2d2535ed283145

    • SHA1

      c012d7e874006a63dfcadf1c9b9762579d4edd2c

    • SHA256

      74cb900edc37220d74dce6b454f74282dc07df9869be0c0c8bcec37496922685

    • SHA512

      9ca115bd959796f5825750cdfbb5f8e16f86823b3df5fd32751807ddd873d81fab9da593a20e32c42696b550e08e239f45e1140389ff61e1e867ad38122ad0d1

    • SSDEEP

      12288:iy90I2+QYjW/nfraproGzW50+naUgm+smZzUh+2QEb54wD2B1e:iyFy/nfurx43nMm+smxUs27b5Z6I

    • Modifies Windows Defender Real-time Protection settings

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Windows security modification

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks