Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.36b49078abd7eba9406662d4809e0010.exe

  • Size

    71KB

  • Sample

    231021-z46b9acb9y

  • MD5

    36b49078abd7eba9406662d4809e0010

  • SHA1

    58a54f3e3bfbec92294f8e0815ed1cce4b263e88

  • SHA256

    7af059cbc1b65fe92343cb202590d31b4aa590b2e0da81bcf54b1b9dfb759e09

  • SHA512

    5a0dc236b464aec2180baacad27900409f4bf8aeda7c1f57300cf93dbf372aa6a82a43a4f07511202149c2c5301af24ce686070bcd9b1c369d0739d3e7413e84

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlDuazTZS:ZRpAyazIlyazTg

Malware Config

Targets

    • Target

      NEAS.36b49078abd7eba9406662d4809e0010.exe

    • Size

      71KB

    • MD5

      36b49078abd7eba9406662d4809e0010

    • SHA1

      58a54f3e3bfbec92294f8e0815ed1cce4b263e88

    • SHA256

      7af059cbc1b65fe92343cb202590d31b4aa590b2e0da81bcf54b1b9dfb759e09

    • SHA512

      5a0dc236b464aec2180baacad27900409f4bf8aeda7c1f57300cf93dbf372aa6a82a43a4f07511202149c2c5301af24ce686070bcd9b1c369d0739d3e7413e84

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlDuazTZS:ZRpAyazIlyazTg

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks