Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1e4280c4bc3bcbdff348a058b0ba8f6a

  • Size

    76KB

  • Sample

    231225-pmgmfsbdbp

  • MD5

    1e4280c4bc3bcbdff348a058b0ba8f6a

  • SHA1

    e1d1ed450d3067694d72f792069793ecb4f87182

  • SHA256

    65da90980f04143094809ccff3d1d09e473c758d817be69cfc91955e41579aaa

  • SHA512

    ec68c262e02af08bf4ea8723f57778b8af2a96b2d9e94686b2d8492ec734a273602c74e732deebf251fedeb791b23c973bb8d7fb91ce1b56f0a91ae9af8c5839

  • SSDEEP

    768:FJxSACC85zFZSUkK8YW4oDXnAKkXuToLCkUM76or7lf7GIY:DxSASaz54FKkXuTocM76t5

Malware Config

Targets

    • Target

      1e4280c4bc3bcbdff348a058b0ba8f6a

    • Size

      76KB

    • MD5

      1e4280c4bc3bcbdff348a058b0ba8f6a

    • SHA1

      e1d1ed450d3067694d72f792069793ecb4f87182

    • SHA256

      65da90980f04143094809ccff3d1d09e473c758d817be69cfc91955e41579aaa

    • SHA512

      ec68c262e02af08bf4ea8723f57778b8af2a96b2d9e94686b2d8492ec734a273602c74e732deebf251fedeb791b23c973bb8d7fb91ce1b56f0a91ae9af8c5839

    • SSDEEP

      768:FJxSACC85zFZSUkK8YW4oDXnAKkXuToLCkUM76or7lf7GIY:DxSASaz54FKkXuTocM76t5

    • Modifies firewall policy service

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks