Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    75825bbdbe90fa33168a5e02458d45a9

  • Size

    290KB

  • Sample

    231222-g6d2nsagdn

  • MD5

    75825bbdbe90fa33168a5e02458d45a9

  • SHA1

    22d1fa69017a53414ccd69cd9759178be952d163

  • SHA256

    59b75e2d828bd41b3bc702b640caf86f158ebf9450e464ca80e25d3475d0bf21

  • SHA512

    90441b32cf882c07bf613571db24d233fefb129f68e428efafef7dc0c55c09b27000c9de85bfe590f41ea0c45f663ff8c9b643350475efa55c2cc5a2e9fd07d3

  • SSDEEP

    6144:/CBv9kgFL47m/w3Ld1KrYXslxaW3pyJfU:/CBv6weseLruxctU

Malware Config

Targets

    • Target

      75825bbdbe90fa33168a5e02458d45a9

    • Size

      290KB

    • MD5

      75825bbdbe90fa33168a5e02458d45a9

    • SHA1

      22d1fa69017a53414ccd69cd9759178be952d163

    • SHA256

      59b75e2d828bd41b3bc702b640caf86f158ebf9450e464ca80e25d3475d0bf21

    • SHA512

      90441b32cf882c07bf613571db24d233fefb129f68e428efafef7dc0c55c09b27000c9de85bfe590f41ea0c45f663ff8c9b643350475efa55c2cc5a2e9fd07d3

    • SSDEEP

      6144:/CBv9kgFL47m/w3Ld1KrYXslxaW3pyJfU:/CBv6weseLruxctU

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks