Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1eba93412d726c87aa094a3c44d9268a.exe

  • Size

    176KB

  • Sample

    240103-rz4c4aegfl

  • MD5

    1eba93412d726c87aa094a3c44d9268a

  • SHA1

    f3ff7dd4573fdbcb2825a7fcad934b5c5235b431

  • SHA256

    e66efbe405be933bb8a27d4b4beb8632bf395cb810ebd2f56b915edbee619a37

  • SHA512

    d8e8b325b5869c75356de1e012daf440e8ffbf23b038a40cf97fdf84ce12a18854d720c4a2aa2a0074ef06b2d1c5015460588670127c1bf1419e2b23b71d0246

  • SSDEEP

    3072:upMlNPPG3GRfo8RKjhzGBqOYcYZlDd8FdymUvuFWVAsiLYmFsL5+/aGw8R2KGU:upYNOWRg8UtGbY/iFdLUvuFuBoRGW2

Malware Config

Targets

    • Target

      1eba93412d726c87aa094a3c44d9268a.exe

    • Size

      176KB

    • MD5

      1eba93412d726c87aa094a3c44d9268a

    • SHA1

      f3ff7dd4573fdbcb2825a7fcad934b5c5235b431

    • SHA256

      e66efbe405be933bb8a27d4b4beb8632bf395cb810ebd2f56b915edbee619a37

    • SHA512

      d8e8b325b5869c75356de1e012daf440e8ffbf23b038a40cf97fdf84ce12a18854d720c4a2aa2a0074ef06b2d1c5015460588670127c1bf1419e2b23b71d0246

    • SSDEEP

      3072:upMlNPPG3GRfo8RKjhzGBqOYcYZlDd8FdymUvuFWVAsiLYmFsL5+/aGw8R2KGU:upYNOWRg8UtGbY/iFdLUvuFuBoRGW2

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks