Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    file

  • Size

    715KB

  • Sample

    230710-q55mnsah32

  • MD5

    1ba71aaeba6e97e0b4101eae85cb6fd1

  • SHA1

    800c305125444909bf5bd0f87aaa9bdf3948fecd

  • SHA256

    659284e5615e553baeceb72ed2f226fda246e40ce0dd0e300514b9afee6d41ca

  • SHA512

    b3e627f5a8cd3454b671300d6c0dfa94f9009abbcde1025c65ab15495180b01290159d02609afddcce166707eda48664afb320229f36ffce9c7636a515ceaf63

  • SSDEEP

    6144:XA01NdzQ/xQWQvYYaE57i1bdRxQ7cUBmCUiJbc77ZvfuYuEdGxTC28Wf7xLUnw+V:XdEJQWQG1bIShtdGxTC2M5JL

Malware Config

Targets

    • Target

      file

    • Size

      715KB

    • MD5

      1ba71aaeba6e97e0b4101eae85cb6fd1

    • SHA1

      800c305125444909bf5bd0f87aaa9bdf3948fecd

    • SHA256

      659284e5615e553baeceb72ed2f226fda246e40ce0dd0e300514b9afee6d41ca

    • SHA512

      b3e627f5a8cd3454b671300d6c0dfa94f9009abbcde1025c65ab15495180b01290159d02609afddcce166707eda48664afb320229f36ffce9c7636a515ceaf63

    • SSDEEP

      6144:XA01NdzQ/xQWQvYYaE57i1bdRxQ7cUBmCUiJbc77ZvfuYuEdGxTC28Wf7xLUnw+V:XdEJQWQG1bIShtdGxTC2M5JL

    • Detect Fabookie payload

    • Fabookie

      Fabookie is facebook account info stealer.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks