Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0a295cb15ccc6e74cb97dcf189fa29f24142e09660233daffeff6cb5fb77f39c

  • Size

    25KB

  • Sample

    230920-xcnl1sca99

  • MD5

    b4115c42d68232ae004a3e4043f2ffbb

  • SHA1

    fc3258270ea4befab364dfcad69a065aad418ae4

  • SHA256

    0a295cb15ccc6e74cb97dcf189fa29f24142e09660233daffeff6cb5fb77f39c

  • SHA512

    6fb14352d32af2ea240392858d3f18428038265885621dfefd421980c4c573702f542d6098680c8ef29ff6bd87080a4aa2f5bd3a634ae8eb2f083893b2411527

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvB:8Q3LotOPNSQVwVVxGKEvKHrVB

Malware Config

Targets

    • Target

      0a295cb15ccc6e74cb97dcf189fa29f24142e09660233daffeff6cb5fb77f39c

    • Size

      25KB

    • MD5

      b4115c42d68232ae004a3e4043f2ffbb

    • SHA1

      fc3258270ea4befab364dfcad69a065aad418ae4

    • SHA256

      0a295cb15ccc6e74cb97dcf189fa29f24142e09660233daffeff6cb5fb77f39c

    • SHA512

      6fb14352d32af2ea240392858d3f18428038265885621dfefd421980c4c573702f542d6098680c8ef29ff6bd87080a4aa2f5bd3a634ae8eb2f083893b2411527

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvB:8Q3LotOPNSQVwVVxGKEvKHrVB

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks