Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    18300cea329655d632ae8d82a9b46090

  • Size

    29KB

  • Sample

    231230-pehvjshae3

  • MD5

    18300cea329655d632ae8d82a9b46090

  • SHA1

    e838a952c4825e90ff9704edfa457f8169ef4015

  • SHA256

    b14acdfb8b11e4654abae86babbb6b9b00d4fd78ce13651c612b2ebb7e9ac860

  • SHA512

    24495a945a4fdd5560d2e256c90d830cb0c653c34eb4ab7473f564ea25cec7d016fd7db0d6c5299c259136092e8b9a6f8a46920eb476e6f4ed190a9d2f00a080

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEF6:SKcR4mjD9r823F6

Malware Config

Targets

    • Target

      18300cea329655d632ae8d82a9b46090

    • Size

      29KB

    • MD5

      18300cea329655d632ae8d82a9b46090

    • SHA1

      e838a952c4825e90ff9704edfa457f8169ef4015

    • SHA256

      b14acdfb8b11e4654abae86babbb6b9b00d4fd78ce13651c612b2ebb7e9ac860

    • SHA512

      24495a945a4fdd5560d2e256c90d830cb0c653c34eb4ab7473f564ea25cec7d016fd7db0d6c5299c259136092e8b9a6f8a46920eb476e6f4ed190a9d2f00a080

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEF6:SKcR4mjD9r823F6

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks