Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
700d69886c489285ce30a469f9839f660738061b796b9092f58a0b5000feccdc
-
Size
707KB
-
Sample
230425-myzlasbg41
-
MD5
6e0f7819c83a5e90c416f1cc269a5936
-
SHA1
757944b388356f8346fa39ecad15749b191dd5da
-
SHA256
700d69886c489285ce30a469f9839f660738061b796b9092f58a0b5000feccdc
-
SHA512
e32ab5a9a3bae77632dc1828dfd0b13f793d6c0138861b685ef15edebaf6f97b3bd97ae67fb852eb3738c4f887acdc0ea50dc81c756ab395fac66dc75c8ad48e
-
SSDEEP
12288:0y90HSk0728HfjSSRg8XWvFrg8cvA8Vefz9AO88DcXNTdnJQm9WYKApQfxOJjRV0:0yySk07LfOigG4E8co8YfSO/qLJxfJQx
Malware Config
Targets
-
-
Target
700d69886c489285ce30a469f9839f660738061b796b9092f58a0b5000feccdc
-
Size
707KB
-
MD5
6e0f7819c83a5e90c416f1cc269a5936
-
SHA1
757944b388356f8346fa39ecad15749b191dd5da
-
SHA256
700d69886c489285ce30a469f9839f660738061b796b9092f58a0b5000feccdc
-
SHA512
e32ab5a9a3bae77632dc1828dfd0b13f793d6c0138861b685ef15edebaf6f97b3bd97ae67fb852eb3738c4f887acdc0ea50dc81c756ab395fac66dc75c8ad48e
-
SSDEEP
12288:0y90HSk0728HfjSSRg8XWvFrg8cvA8Vefz9AO88DcXNTdnJQm9WYKApQfxOJjRV0:0yySk07LfOigG4E8co8YfSO/qLJxfJQx
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-