Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c39bc75c35e6e2907ecf10c91a0236631337744cf3657a256787bb43be9a2cbf

  • Size

    1.1MB

  • Sample

    230426-nn32eaag9t

  • MD5

    8bcc03d39f91acb3267d4904f8b757b1

  • SHA1

    2d06fd166f5aeb19757c04409734a314826e7dcb

  • SHA256

    c39bc75c35e6e2907ecf10c91a0236631337744cf3657a256787bb43be9a2cbf

  • SHA512

    aedaeaefcd257df66abed336028804631c87a99d30e99cb4700d10d9f21772622e86391857b58169ba4d91a264f4809f1f6eda8c023624744b6ca0486023febb

  • SSDEEP

    24576:7yKhCuq8ZZqrIfpjwX5yA9MKc1trLj1/meTumHG:uUDZ4Mhjm5Ji7vj1uq

Malware Config

Targets

    • Target

      c39bc75c35e6e2907ecf10c91a0236631337744cf3657a256787bb43be9a2cbf

    • Size

      1.1MB

    • MD5

      8bcc03d39f91acb3267d4904f8b757b1

    • SHA1

      2d06fd166f5aeb19757c04409734a314826e7dcb

    • SHA256

      c39bc75c35e6e2907ecf10c91a0236631337744cf3657a256787bb43be9a2cbf

    • SHA512

      aedaeaefcd257df66abed336028804631c87a99d30e99cb4700d10d9f21772622e86391857b58169ba4d91a264f4809f1f6eda8c023624744b6ca0486023febb

    • SSDEEP

      24576:7yKhCuq8ZZqrIfpjwX5yA9MKc1trLj1/meTumHG:uUDZ4Mhjm5Ji7vj1uq

    • Modifies Windows Defender Real-time Protection settings

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Windows security modification

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks