Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    BadwareDeepCleaner.exe

  • Size

    771KB

  • Sample

    230603-bjh48afa83

  • MD5

    344806d69d5895c4a178cb32278ca18f

  • SHA1

    dac2dee6f31fe824cc639ccde87be0c83687e1a3

  • SHA256

    5e7647b583e649e29af7662c858cac16041a8088e6f5deffa6f1d0148f460476

  • SHA512

    2377db2048e1aeaea71b79d2fdf2090789c7c5d73cf0e02727e7c7ac6d9b024e6bcb4b40744bb5dd8166620e6a735b60c6cf7f3fccb39e27c309f988351c71fd

  • SSDEEP

    24576:PP+pvZyI9oiJfJulj1CBMeIFjKuQdGhSaApNrWSvUghmjpoVb3/k2JPQIFfUnI8M:X+pxNoxlj1CBMeIFjKuQdGhSaApNrWS0

Malware Config

Targets

    • Target

      BadwareDeepCleaner.exe

    • Size

      771KB

    • MD5

      344806d69d5895c4a178cb32278ca18f

    • SHA1

      dac2dee6f31fe824cc639ccde87be0c83687e1a3

    • SHA256

      5e7647b583e649e29af7662c858cac16041a8088e6f5deffa6f1d0148f460476

    • SHA512

      2377db2048e1aeaea71b79d2fdf2090789c7c5d73cf0e02727e7c7ac6d9b024e6bcb4b40744bb5dd8166620e6a735b60c6cf7f3fccb39e27c309f988351c71fd

    • SSDEEP

      24576:PP+pvZyI9oiJfJulj1CBMeIFjKuQdGhSaApNrWSvUghmjpoVb3/k2JPQIFfUnI8M:X+pxNoxlj1CBMeIFjKuQdGhSaApNrWS0

    • Stops running service(s)

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v6

Tasks