Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42ab80bea83ca28028ff6c0683112767

  • Size

    146KB

  • Sample

    240105-ea8v3aadd5

  • MD5

    42ab80bea83ca28028ff6c0683112767

  • SHA1

    5e6be4f5429c6af51f374d71ef6f6b8e5d770369

  • SHA256

    13b3c0dfc85647f81e74d6e6d9540fdc103719cdc1c1d76238938667509d10c6

  • SHA512

    292f9573246efa185783c66e2eb07b8e82dac47a822bb8f83d7ca01aba1e0742655bd8c0fcaade11230716766b7b309037fd6fb0a392e629f072282729d83bf0

  • SSDEEP

    3072:wOpXym/FMyEGyg1qq5xQfJrcji3ZSgMFdnmufnWXJN/:1YGyW5+fJQutMFdPOD/

Malware Config

Targets

    • Target

      42ab80bea83ca28028ff6c0683112767

    • Size

      146KB

    • MD5

      42ab80bea83ca28028ff6c0683112767

    • SHA1

      5e6be4f5429c6af51f374d71ef6f6b8e5d770369

    • SHA256

      13b3c0dfc85647f81e74d6e6d9540fdc103719cdc1c1d76238938667509d10c6

    • SHA512

      292f9573246efa185783c66e2eb07b8e82dac47a822bb8f83d7ca01aba1e0742655bd8c0fcaade11230716766b7b309037fd6fb0a392e629f072282729d83bf0

    • SSDEEP

      3072:wOpXym/FMyEGyg1qq5xQfJrcji3ZSgMFdnmufnWXJN/:1YGyW5+fJQutMFdPOD/

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks