Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9fed0ab71a623bc98a5d70be5952de36_JC.exe

  • Size

    391KB

  • Sample

    231012-xwbfsscb69

  • MD5

    9fed0ab71a623bc98a5d70be5952de36

  • SHA1

    ec7890cf759bc063046ca34fb5da4e3cb7743be2

  • SHA256

    74400de6b46d453421e9acd318fcb526161ed6cd24e686c5d76e7eb484388baf

  • SHA512

    a8e353736a14b6652d82fb579b391a319544409500c0eb3f3b9111b5fc5214b68b05435288ad6ff495049b165acd291433347113aabc6ffa69e63dacc6e0088d

  • SSDEEP

    6144:zXC4vgmhbIxs3NBBcAKdmqxgXpv6geA9//BucEl5COt8Xwfq2CHa+yF07N8Y3+m8:zXCNi9Bejnx21zZBAvl+yqgj+5x3fe

Malware Config

Targets

    • Target

      9fed0ab71a623bc98a5d70be5952de36_JC.exe

    • Size

      391KB

    • MD5

      9fed0ab71a623bc98a5d70be5952de36

    • SHA1

      ec7890cf759bc063046ca34fb5da4e3cb7743be2

    • SHA256

      74400de6b46d453421e9acd318fcb526161ed6cd24e686c5d76e7eb484388baf

    • SHA512

      a8e353736a14b6652d82fb579b391a319544409500c0eb3f3b9111b5fc5214b68b05435288ad6ff495049b165acd291433347113aabc6ffa69e63dacc6e0088d

    • SSDEEP

      6144:zXC4vgmhbIxs3NBBcAKdmqxgXpv6geA9//BucEl5COt8Xwfq2CHa+yF07N8Y3+m8:zXCNi9Bejnx21zZBAvl+yqgj+5x3fe

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks