Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    135b0186558c2bf30e87c63f058b4b5f

  • Size

    30KB

  • Sample

    231230-kbkgraadhm

  • MD5

    135b0186558c2bf30e87c63f058b4b5f

  • SHA1

    ca890f844cd490ed6fea2714e22dce14a345975d

  • SHA256

    fa49f95682f85aaa071784a6371cefcee766b1798e2c3fa251f390b7e6722e52

  • SHA512

    198e1ffd1884f478c19537a6c518a43bba89bb71e06d1d67e97de8f7c49b04907622e1f1fd604f0dda221318bbb987aff54c72f895e289d99b8d56b42aad29d6

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEF4:SKcR4mjD9r823F4

Malware Config

Targets

    • Target

      135b0186558c2bf30e87c63f058b4b5f

    • Size

      30KB

    • MD5

      135b0186558c2bf30e87c63f058b4b5f

    • SHA1

      ca890f844cd490ed6fea2714e22dce14a345975d

    • SHA256

      fa49f95682f85aaa071784a6371cefcee766b1798e2c3fa251f390b7e6722e52

    • SHA512

      198e1ffd1884f478c19537a6c518a43bba89bb71e06d1d67e97de8f7c49b04907622e1f1fd604f0dda221318bbb987aff54c72f895e289d99b8d56b42aad29d6

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEF4:SKcR4mjD9r823F4

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks