Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    XLT0090008000000.bat

  • Size

    518KB

  • Sample

    231012-spj25sfh2x

  • MD5

    649aa1a7fb22bdde7c2aebad8966d777

  • SHA1

    d23b3f34acf8c41d0aed311c12e110d5cccde806

  • SHA256

    b5b00d9aeb01e19c7c47fc3ef26eb6b232369156e889349897e24a590ad5117c

  • SHA512

    a428717a4ca9d727ad198874c165af84abee3cd54a5692db3f30da367f87283208fffece4b39c2433d0bb07284f0f3b5ba06d611fca199d85fe0d883364df31b

  • SSDEEP

    12288:fok4fD2S+Z5m81XkqyxJZwR9f5RUsk6ceXh6:fd4bzm5m81XkbHml5isk6L8

Score
7/10

Malware Config

Targets

    • Target

      XLT0090008000000.bat

    • Size

      518KB

    • MD5

      649aa1a7fb22bdde7c2aebad8966d777

    • SHA1

      d23b3f34acf8c41d0aed311c12e110d5cccde806

    • SHA256

      b5b00d9aeb01e19c7c47fc3ef26eb6b232369156e889349897e24a590ad5117c

    • SHA512

      a428717a4ca9d727ad198874c165af84abee3cd54a5692db3f30da367f87283208fffece4b39c2433d0bb07284f0f3b5ba06d611fca199d85fe0d883364df31b

    • SSDEEP

      12288:fok4fD2S+Z5m81XkqyxJZwR9f5RUsk6ceXh6:fd4bzm5m81XkbHml5isk6L8

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks