Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bc548713a947afc05890c206d6b63ac8_JC.exe

  • Size

    161KB

  • Sample

    231012-173afafa94

  • MD5

    bc548713a947afc05890c206d6b63ac8

  • SHA1

    338447d5e4da7f3956a1a497b4b4117cf028a596

  • SHA256

    281da6e00a1e62346cb302ac1756b594f956d16eb658ab3cfae6332482539b7d

  • SHA512

    9d7e0e178a90f59b2b31f6d4586c9068994a91ad32a7d09d7a86d684ebbef11af96087435cc953335da57e0012d80a62baa87ba3902ef86761f2ab009bb037c6

  • SSDEEP

    3072:aKcWmjRrz3/spWvv6RwYLV2EPr1oMBGd1D2S+eBalODap:ZGWSjk2EPr1oFkSrBalODM

Malware Config

Targets

    • Target

      bc548713a947afc05890c206d6b63ac8_JC.exe

    • Size

      161KB

    • MD5

      bc548713a947afc05890c206d6b63ac8

    • SHA1

      338447d5e4da7f3956a1a497b4b4117cf028a596

    • SHA256

      281da6e00a1e62346cb302ac1756b594f956d16eb658ab3cfae6332482539b7d

    • SHA512

      9d7e0e178a90f59b2b31f6d4586c9068994a91ad32a7d09d7a86d684ebbef11af96087435cc953335da57e0012d80a62baa87ba3902ef86761f2ab009bb037c6

    • SSDEEP

      3072:aKcWmjRrz3/spWvv6RwYLV2EPr1oMBGd1D2S+eBalODap:ZGWSjk2EPr1oFkSrBalODM

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks