Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    50a3fabe509fd67f754aba4177a3b87d

  • Size

    194KB

  • Sample

    231226-d4d24sgacr

  • MD5

    50a3fabe509fd67f754aba4177a3b87d

  • SHA1

    2e9b4f2b4d946f1db0b945f547c8ff23f99447e6

  • SHA256

    02ebbdc3498c822d2d08ca3e8255279982e2d1ad23e33c64d5bcef503df5fa38

  • SHA512

    fb508c5eec002d50ef5347a0fadecc29291c2bd306e014eb81f764f9dc4b42fa8797f2d53212ad61c7dde842b350eabf70b36e69705972649cb64820ad53b093

  • SSDEEP

    3072:hn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsUUIaN3EgHeXA2cedWvzlR6/9Jr2:h1OgDPdkBAFZWjadD4s5IQ3XKNqzl4F8

Malware Config

Targets

    • Target

      50a3fabe509fd67f754aba4177a3b87d

    • Size

      194KB

    • MD5

      50a3fabe509fd67f754aba4177a3b87d

    • SHA1

      2e9b4f2b4d946f1db0b945f547c8ff23f99447e6

    • SHA256

      02ebbdc3498c822d2d08ca3e8255279982e2d1ad23e33c64d5bcef503df5fa38

    • SHA512

      fb508c5eec002d50ef5347a0fadecc29291c2bd306e014eb81f764f9dc4b42fa8797f2d53212ad61c7dde842b350eabf70b36e69705972649cb64820ad53b093

    • SSDEEP

      3072:hn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsUUIaN3EgHeXA2cedWvzlR6/9Jr2:h1OgDPdkBAFZWjadD4s5IQ3XKNqzl4F8

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

MITRE ATT&CK Enterprise v15

Tasks