Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    03019ca8a4cab959ba202bba1990a3ff

  • Size

    103KB

  • Sample

    231229-y6sy9sbgep

  • MD5

    03019ca8a4cab959ba202bba1990a3ff

  • SHA1

    24ebcfbe2687d451831e0f146bfa3cad0037b1e0

  • SHA256

    d78bfa2a5b36e21a96eba053882465f0950ce5fdf1b5f4ab6c00a5e56faa2c78

  • SHA512

    310604f051ce8ae6e3338140d5c692ca41f2b6b133e42332bd58d48fc36ccd74dfc54c48c1bb7293aa7b178eb05986ce44d62f99e16fe792a9f84e58c3ba8daa

  • SSDEEP

    3072:sr3KcWmjRrzSw4Sg7/2PHoF/hEXCqROe0Dzj:/x/iHouC+t0Dzj

Malware Config

Targets

    • Target

      03019ca8a4cab959ba202bba1990a3ff

    • Size

      103KB

    • MD5

      03019ca8a4cab959ba202bba1990a3ff

    • SHA1

      24ebcfbe2687d451831e0f146bfa3cad0037b1e0

    • SHA256

      d78bfa2a5b36e21a96eba053882465f0950ce5fdf1b5f4ab6c00a5e56faa2c78

    • SHA512

      310604f051ce8ae6e3338140d5c692ca41f2b6b133e42332bd58d48fc36ccd74dfc54c48c1bb7293aa7b178eb05986ce44d62f99e16fe792a9f84e58c3ba8daa

    • SSDEEP

      3072:sr3KcWmjRrzSw4Sg7/2PHoF/hEXCqROe0Dzj:/x/iHouC+t0Dzj

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks