Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0cf49225491f58b3d64f4da7bd304e3e

  • Size

    285KB

  • Sample

    231224-x1zdesadbj

  • MD5

    0cf49225491f58b3d64f4da7bd304e3e

  • SHA1

    bfa01952f5c3cae91f0222e4a5d894b6c37dedfd

  • SHA256

    298c67b45d460f8cfa0d054d7be4317d2a81bd79f654dd744466a73505ad8e9d

  • SHA512

    0a69aa5dc3defa00cdceafbe0ac92ad1f2b3e278fc06bc596d4d38a08e5175c92e25d00baf609b7481f6d7cc69cb180113bacf5531fe836da766d1517fdf7999

  • SSDEEP

    6144:O9j17jjCWXkANmZGceQhAmrf+jTCWdCJqv8+nY:aBjCekoD5QmIaTCWYJqv8+nY

Malware Config

Targets

    • Target

      0cf49225491f58b3d64f4da7bd304e3e

    • Size

      285KB

    • MD5

      0cf49225491f58b3d64f4da7bd304e3e

    • SHA1

      bfa01952f5c3cae91f0222e4a5d894b6c37dedfd

    • SHA256

      298c67b45d460f8cfa0d054d7be4317d2a81bd79f654dd744466a73505ad8e9d

    • SHA512

      0a69aa5dc3defa00cdceafbe0ac92ad1f2b3e278fc06bc596d4d38a08e5175c92e25d00baf609b7481f6d7cc69cb180113bacf5531fe836da766d1517fdf7999

    • SSDEEP

      6144:O9j17jjCWXkANmZGceQhAmrf+jTCWdCJqv8+nY:aBjCekoD5QmIaTCWYJqv8+nY

    • Modifies security service

    • Disables taskbar notifications via registry modification

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks