Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.914bc1a57dedeb6c4c28365b41b4c260.exe

  • Size

    216KB

  • Sample

    231101-cbs5wsah55

  • MD5

    914bc1a57dedeb6c4c28365b41b4c260

  • SHA1

    f6bb527f8862fda30bb36b1f3f0125ade1536a6e

  • SHA256

    1cc59b4142e6aba697b6416db732ede7f87c1bb76444307b2e0ee4c5af0d598a

  • SHA512

    08dcea76115ee2f934283225f51bcaf50b5540bd15b5564197c28b2307f143b8b9cb7c0945904718c29b0585c2afc2f0b2aa8216629ac9dde187edeb115506da

  • SSDEEP

    3072:SPUHpiKT2t2UHIu05W7SAFJJOUD9cckiKop97f3r8n9t9YgntwZ:/rTfUHeeSKOS9ccFKk3Y9t9YZZ

Malware Config

Targets

    • Target

      NEAS.914bc1a57dedeb6c4c28365b41b4c260.exe

    • Size

      216KB

    • MD5

      914bc1a57dedeb6c4c28365b41b4c260

    • SHA1

      f6bb527f8862fda30bb36b1f3f0125ade1536a6e

    • SHA256

      1cc59b4142e6aba697b6416db732ede7f87c1bb76444307b2e0ee4c5af0d598a

    • SHA512

      08dcea76115ee2f934283225f51bcaf50b5540bd15b5564197c28b2307f143b8b9cb7c0945904718c29b0585c2afc2f0b2aa8216629ac9dde187edeb115506da

    • SSDEEP

      3072:SPUHpiKT2t2UHIu05W7SAFJJOUD9cckiKop97f3r8n9t9YgntwZ:/rTfUHeeSKOS9ccFKk3Y9t9YZZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks