Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f5c18dc1c7bb825ab9355fcf0772f398.bin

  • Size

    7.8MB

  • Sample

    231107-d4318scd35

  • MD5

    93f8b77dc337e1c7044d80901612773c

  • SHA1

    44e32e149a368649bc156e66aa15b4d0705bf39d

  • SHA256

    3b952916561a726155f1c6c15c24988014cd7b6edd7371200724fcb7a091d4c6

  • SHA512

    f6ed04528d33d4c5883d2b0ce0aba54a095bad156b61a968c318ca1ba008d7c4075bef4cfde2f51b46c7b69fde73949671a945e879bb95f29f41b5236d0d3389

  • SSDEEP

    196608:GjUZFQ+dYn9XA0aBVDxC6j7sMKbwE9OLfTfahVP3dlvdK7v2sD:GjoQYYn9Q0kpp7s8fDTOdlvdyvbD

Score
7/10

Malware Config

Targets

    • Target

      dcbf2674b9529c0e3d22d9228b3519dfba6dc3062ea25112c134d090755927b0.exe

    • Size

      8.6MB

    • MD5

      f5c18dc1c7bb825ab9355fcf0772f398

    • SHA1

      ef51285b0a4129c770842f1d4c041bae0ce53e82

    • SHA256

      dcbf2674b9529c0e3d22d9228b3519dfba6dc3062ea25112c134d090755927b0

    • SHA512

      bd71690cfbc3019fec7c1e3eec17a82a9fec280f0e28cb348f329bd0a5e9ca5f7f1de4004b84645baa0f27ec8936a2d714548bad6160faf9c1d39d92a56eec99

    • SSDEEP

      196608:0vQO/26iZrVG5Jf808zwUIvP4Btk3CDHKhiBm4omLvorU:QQO/DEkf8xzw734BtnSCmlmDT

    Score
    7/10
    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks