Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    04ce697bd2d74a29d724e59b08359606

  • Size

    154KB

  • Sample

    231225-ew2zmsfahk

  • MD5

    04ce697bd2d74a29d724e59b08359606

  • SHA1

    9875e1229a860ec166bfefa46be2502588a97bb3

  • SHA256

    6d244b4b672ec7aa4614c2ad51b798e164c81ad38be191f6c0800a9dc2cc9d8d

  • SHA512

    d0e09d263ff2e3a88c837cb40ee4f1a2d8cecb7dbc543ee7c8f88d5c4575a632fed1ebe35302aa2bf82cedd8af159d8bb35f5f58b76b3a1fe116772c23507238

  • SSDEEP

    3072:Budy3PuJjD7aHObMQ9Y3x0nIPHSi+pzX8/zHZFzjrGRrUGq514/LQ:BkkPSD7aHOAH0IPHzU+7rkgGEC

Malware Config

Targets

    • Target

      04ce697bd2d74a29d724e59b08359606

    • Size

      154KB

    • MD5

      04ce697bd2d74a29d724e59b08359606

    • SHA1

      9875e1229a860ec166bfefa46be2502588a97bb3

    • SHA256

      6d244b4b672ec7aa4614c2ad51b798e164c81ad38be191f6c0800a9dc2cc9d8d

    • SHA512

      d0e09d263ff2e3a88c837cb40ee4f1a2d8cecb7dbc543ee7c8f88d5c4575a632fed1ebe35302aa2bf82cedd8af159d8bb35f5f58b76b3a1fe116772c23507238

    • SSDEEP

      3072:Budy3PuJjD7aHObMQ9Y3x0nIPHSi+pzX8/zHZFzjrGRrUGq514/LQ:BkkPSD7aHOAH0IPHzU+7rkgGEC

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks