Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2900a61eb29a80a368fbb6930396212d

  • Size

    341KB

  • Sample

    231231-fj1rgsgbek

  • MD5

    2900a61eb29a80a368fbb6930396212d

  • SHA1

    fedcb5ab469a93328f3cede81119308686ca35b5

  • SHA256

    f9474d7e4bb0cb581aab83d0003f3334520d2b55f9e6185a5cfd9b0972c8c815

  • SHA512

    63f11365544b5425cae2c5eb1ffbf3e7bb35bf159c120b419a0ccad1de4cd6777b962ce3cef43a80343e6d437de1f731012f4b8107ff0ee70cdc9abedc389bcc

  • SSDEEP

    6144:hGFY/6JkMZqf9V7Yo6LHruTDdRvoZplfiF7AlWFSsyS5306OVjyQ6ss:h5WZqf9hQHreYpJi5wWVyS5k5yQJs

Malware Config

Targets

    • Target

      2900a61eb29a80a368fbb6930396212d

    • Size

      341KB

    • MD5

      2900a61eb29a80a368fbb6930396212d

    • SHA1

      fedcb5ab469a93328f3cede81119308686ca35b5

    • SHA256

      f9474d7e4bb0cb581aab83d0003f3334520d2b55f9e6185a5cfd9b0972c8c815

    • SHA512

      63f11365544b5425cae2c5eb1ffbf3e7bb35bf159c120b419a0ccad1de4cd6777b962ce3cef43a80343e6d437de1f731012f4b8107ff0ee70cdc9abedc389bcc

    • SSDEEP

      6144:hGFY/6JkMZqf9V7Yo6LHruTDdRvoZplfiF7AlWFSsyS5306OVjyQ6ss:h5WZqf9hQHreYpJi5wWVyS5k5yQJs

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks