Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    26ca5c7aa6289e9598ce6cc6d9d03f47

  • Size

    115KB

  • Sample

    231231-eacgvsbhcj

  • MD5

    26ca5c7aa6289e9598ce6cc6d9d03f47

  • SHA1

    00b1d3ada6b8a003d9878bd6f4bfc0f2433844c7

  • SHA256

    af812aa371ec2ff8b43951598cb24c2b598d7b837a125e36192d780104668a7f

  • SHA512

    b384012b8695a339668bd9808607b86969e80ce1468d84d85926c490a50b2450ffebab84772bb9869559e25e36a16de47749acb6e853a0af46d669fbcd4d71bc

  • SSDEEP

    3072:SKcWmjRrz3ZKcWmjRrz3IChT/zXrfgvo4fyyA7wE5:hGyGIwrz74Auyns8

Malware Config

Targets

    • Target

      26ca5c7aa6289e9598ce6cc6d9d03f47

    • Size

      115KB

    • MD5

      26ca5c7aa6289e9598ce6cc6d9d03f47

    • SHA1

      00b1d3ada6b8a003d9878bd6f4bfc0f2433844c7

    • SHA256

      af812aa371ec2ff8b43951598cb24c2b598d7b837a125e36192d780104668a7f

    • SHA512

      b384012b8695a339668bd9808607b86969e80ce1468d84d85926c490a50b2450ffebab84772bb9869559e25e36a16de47749acb6e853a0af46d669fbcd4d71bc

    • SSDEEP

      3072:SKcWmjRrz3ZKcWmjRrz3IChT/zXrfgvo4fyyA7wE5:hGyGIwrz74Auyns8

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks