Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    07053ea86dd370d8e7c1e935a96af3b9

  • Size

    173KB

  • Sample

    231224-vhr6aageb6

  • MD5

    07053ea86dd370d8e7c1e935a96af3b9

  • SHA1

    102ae2b6fe49621aaa4580921367dec4a9c446dd

  • SHA256

    6129c6cdfa86b869afbdad5062d6a6c0dd7c1b090c804e328b63b9eb9aea957b

  • SHA512

    1974cf3c9da338a24fcae5526d49f9267cebc54e0756eafdbd358c55374bca6fc0cc109909c7ef3af42807c624c5cba2f8d23f4f86f6a3e81bbd4a9fca9e5306

  • SSDEEP

    3072:7T62yBAnxZpjuXrwuDP0yuDaZiH95wtDsSlNfgZ6QdpsQJXvwJiRF9m:34CZpOk+P0haZYEZl2Z6QnJ/qiRF

Malware Config

Targets

    • Target

      07053ea86dd370d8e7c1e935a96af3b9

    • Size

      173KB

    • MD5

      07053ea86dd370d8e7c1e935a96af3b9

    • SHA1

      102ae2b6fe49621aaa4580921367dec4a9c446dd

    • SHA256

      6129c6cdfa86b869afbdad5062d6a6c0dd7c1b090c804e328b63b9eb9aea957b

    • SHA512

      1974cf3c9da338a24fcae5526d49f9267cebc54e0756eafdbd358c55374bca6fc0cc109909c7ef3af42807c624c5cba2f8d23f4f86f6a3e81bbd4a9fca9e5306

    • SSDEEP

      3072:7T62yBAnxZpjuXrwuDP0yuDaZiH95wtDsSlNfgZ6QdpsQJXvwJiRF9m:34CZpOk+P0haZYEZl2Z6QnJ/qiRF

    • Modifies security service

    • Disables taskbar notifications via registry modification

    • Modifies Installed Components in the registry

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks