Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cad1bea862315992a2d8c315a0557df6_JC.exe

  • Size

    214KB

  • Sample

    231012-16ykvsdb9y

  • MD5

    cad1bea862315992a2d8c315a0557df6

  • SHA1

    01a34227653ac98ba6589fcba8b004261d1a491b

  • SHA256

    fec41aebe2a90ac79738b7109bacba66ffe08c9cbbf4b7d27fd90c4e4be27b43

  • SHA512

    6d8cb883bcc44c5470eb62a82faa93d19667033987a76f04eee556d0ff08bbd4ae71f815b4c53135862979571da1ab4ff86a996f66b2d95d0072856d1844a899

  • SSDEEP

    3072:ZhpAyazIlyazTUzjRDxpK1tXOti9p3yVx3Jqx/unr61z4sxeF+ZaO7NeYlDKZLWu:hZMaz+pxpQOifgx3JOe+1zh1ZayD6LF

Malware Config

Targets

    • Target

      cad1bea862315992a2d8c315a0557df6_JC.exe

    • Size

      214KB

    • MD5

      cad1bea862315992a2d8c315a0557df6

    • SHA1

      01a34227653ac98ba6589fcba8b004261d1a491b

    • SHA256

      fec41aebe2a90ac79738b7109bacba66ffe08c9cbbf4b7d27fd90c4e4be27b43

    • SHA512

      6d8cb883bcc44c5470eb62a82faa93d19667033987a76f04eee556d0ff08bbd4ae71f815b4c53135862979571da1ab4ff86a996f66b2d95d0072856d1844a899

    • SSDEEP

      3072:ZhpAyazIlyazTUzjRDxpK1tXOti9p3yVx3Jqx/unr61z4sxeF+ZaO7NeYlDKZLWu:hZMaz+pxpQOifgx3JOe+1zh1ZayD6LF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks