Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1b2a52507cdbfcd6a7e54916e2a95c04

  • Size

    313KB

  • Sample

    231230-rlqj3sfffr

  • MD5

    1b2a52507cdbfcd6a7e54916e2a95c04

  • SHA1

    51ed8ae635f1a1e4821fed9ce1f74339bd494236

  • SHA256

    7da049f0f71e8f7efcef398ef39fce5d8f2c500bcc73d7007a08f4315c6f531e

  • SHA512

    a87d09a99a2df6b01bfd89f657509f9caf041697378032a18065bc7a196fa18dbd1a6933ea4cbe02566728d405e14437742dde3ec458834d84e8b955678bdc58

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4slUdKMtoe1Cxupm3auwi7mhwxscqMmA2v7Uf:91OgLdabdKMtsVKZi7mhwxv2Yf

Malware Config

Targets

    • Target

      1b2a52507cdbfcd6a7e54916e2a95c04

    • Size

      313KB

    • MD5

      1b2a52507cdbfcd6a7e54916e2a95c04

    • SHA1

      51ed8ae635f1a1e4821fed9ce1f74339bd494236

    • SHA256

      7da049f0f71e8f7efcef398ef39fce5d8f2c500bcc73d7007a08f4315c6f531e

    • SHA512

      a87d09a99a2df6b01bfd89f657509f9caf041697378032a18065bc7a196fa18dbd1a6933ea4cbe02566728d405e14437742dde3ec458834d84e8b955678bdc58

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4slUdKMtoe1Cxupm3auwi7mhwxscqMmA2v7Uf:91OgLdabdKMtsVKZi7mhwxv2Yf

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks