Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7104f635a41839bac7835703f06f744e

  • Size

    95KB

  • Sample

    230705-jl2y4sbb43

  • MD5

    7104f635a41839bac7835703f06f744e

  • SHA1

    2ca12e1bf681180799a2f277c13218418bb9f1bb

  • SHA256

    88502f27ab03c34af7ceda2bb6fecda42ae227e74e8a5e52346db749e200d134

  • SHA512

    9d61715d705363073b8b6e645c462095e7bd039aa67013f7907162d7f47cc151be6bbcddd2292cdc03859327525e87ef0e0090609701a4507ea8f4715db95c7a

  • SSDEEP

    1536:auj56ycNa0SNndwAhRvTlrYZUkGnP3+RBJWPnhdTW8tBniRgR:auj5+NJINhRvTHlnP3+RB4pYwBi

Malware Config

Targets

    • Target

      7104f635a41839bac7835703f06f744e

    • Size

      95KB

    • MD5

      7104f635a41839bac7835703f06f744e

    • SHA1

      2ca12e1bf681180799a2f277c13218418bb9f1bb

    • SHA256

      88502f27ab03c34af7ceda2bb6fecda42ae227e74e8a5e52346db749e200d134

    • SHA512

      9d61715d705363073b8b6e645c462095e7bd039aa67013f7907162d7f47cc151be6bbcddd2292cdc03859327525e87ef0e0090609701a4507ea8f4715db95c7a

    • SSDEEP

      1536:auj56ycNa0SNndwAhRvTlrYZUkGnP3+RBJWPnhdTW8tBniRgR:auj5+NJINhRvTHlnP3+RB4pYwBi

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks