Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3d3863207f7d96eb34d58a7c58841a00

  • Size

    347KB

  • Sample

    231225-z66e2aefe7

  • MD5

    3d3863207f7d96eb34d58a7c58841a00

  • SHA1

    2232e5a01b356051311b98320027bd429da1e164

  • SHA256

    4e30d4996b1aa35c126453a777d5a0456457b375258f7077b2284bf042baf99e

  • SHA512

    8286e968f2249fb817060f516a2b08124154d5af8704673b243b026801d84260895ad09a96bbbe9a75aa1b4b300b55102783e0cdcaf2c7d19602d2a2da8026e3

  • SSDEEP

    6144:hGyGpETomEh+nAXutsj4OSQZhf5bHyIf6oQbsVwRq9id+1xpChMT:h3gET0P4OS4hfZ5fL7VCqNY0

Malware Config

Targets

    • Target

      3d3863207f7d96eb34d58a7c58841a00

    • Size

      347KB

    • MD5

      3d3863207f7d96eb34d58a7c58841a00

    • SHA1

      2232e5a01b356051311b98320027bd429da1e164

    • SHA256

      4e30d4996b1aa35c126453a777d5a0456457b375258f7077b2284bf042baf99e

    • SHA512

      8286e968f2249fb817060f516a2b08124154d5af8704673b243b026801d84260895ad09a96bbbe9a75aa1b4b300b55102783e0cdcaf2c7d19602d2a2da8026e3

    • SSDEEP

      6144:hGyGpETomEh+nAXutsj4OSQZhf5bHyIf6oQbsVwRq9id+1xpChMT:h3gET0P4OS4hfZ5fL7VCqNY0

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks