Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2b530e5b3cb6b6a4e4d9b7c8960f2a2d01fa3221197ef26bbfda4d9813c82707

  • Size

    2.6MB

  • Sample

    231003-3tg4fsgb2w

  • MD5

    b61949c9b0b3ecfa9d0e4376914f490c

  • SHA1

    9d74935d585588a367d4c8da5960fd3071561f0f

  • SHA256

    2b530e5b3cb6b6a4e4d9b7c8960f2a2d01fa3221197ef26bbfda4d9813c82707

  • SHA512

    afd1a8bb4ae0715f0fc33200d3bde56e5efa98c81596bfa045a15a58fe860b7dac6e319f62c2bbc4aacedcd288c17525af1888e196bc7a4c4100c6e1263bbe9f

  • SSDEEP

    49152:Am1AUh2/G7ubvX185Z4+EvVO/xMlEFEpXhEQTZ1lsc07PFz8jvOARXUNqMrFJ0y8:1ulG74vlyZ4PvwAEw2B8jvVRCqEGwl6

Score
7/10

Malware Config

Targets

    • Target

      2b530e5b3cb6b6a4e4d9b7c8960f2a2d01fa3221197ef26bbfda4d9813c82707

    • Size

      2.6MB

    • MD5

      b61949c9b0b3ecfa9d0e4376914f490c

    • SHA1

      9d74935d585588a367d4c8da5960fd3071561f0f

    • SHA256

      2b530e5b3cb6b6a4e4d9b7c8960f2a2d01fa3221197ef26bbfda4d9813c82707

    • SHA512

      afd1a8bb4ae0715f0fc33200d3bde56e5efa98c81596bfa045a15a58fe860b7dac6e319f62c2bbc4aacedcd288c17525af1888e196bc7a4c4100c6e1263bbe9f

    • SSDEEP

      49152:Am1AUh2/G7ubvX185Z4+EvVO/xMlEFEpXhEQTZ1lsc07PFz8jvOARXUNqMrFJ0y8:1ulG74vlyZ4PvwAEw2B8jvVRCqEGwl6

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks