Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    875ba49f3e52ed56b670a5d4e9d2094c2561ed7c4b8bfbf872cb7eede13db829

  • Size

    104KB

  • Sample

    230821-m78kkaec2w

  • MD5

    4e68ebe262d74b58423c0e3010877fc0

  • SHA1

    6d10225234e3b9fdc4fe5e1ee1ba1e5f73e84ed9

  • SHA256

    875ba49f3e52ed56b670a5d4e9d2094c2561ed7c4b8bfbf872cb7eede13db829

  • SHA512

    95f89b49d9e2d9e505c33819cdbe23b0d2d8ec425f48854d263373b3fb4aec04602cb6d34271c50351e059a8d65db15723779d86eeeb3e3c8ff1e36d509e2261

  • SSDEEP

    1536:PFUaYzMXqtGNttyUn01Q78a4RLib6KSevQ1ztO9kRteb:PqaY46tGNttyJQ7KRGmKSevmpO9Wteb

Score
8/10

Malware Config

Targets

    • Target

      875ba49f3e52ed56b670a5d4e9d2094c2561ed7c4b8bfbf872cb7eede13db829

    • Size

      104KB

    • MD5

      4e68ebe262d74b58423c0e3010877fc0

    • SHA1

      6d10225234e3b9fdc4fe5e1ee1ba1e5f73e84ed9

    • SHA256

      875ba49f3e52ed56b670a5d4e9d2094c2561ed7c4b8bfbf872cb7eede13db829

    • SHA512

      95f89b49d9e2d9e505c33819cdbe23b0d2d8ec425f48854d263373b3fb4aec04602cb6d34271c50351e059a8d65db15723779d86eeeb3e3c8ff1e36d509e2261

    • SSDEEP

      1536:PFUaYzMXqtGNttyUn01Q78a4RLib6KSevQ1ztO9kRteb:PqaY46tGNttyJQ7KRGmKSevmpO9Wteb

    Score
    8/10
    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks