Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42f7a91e9266e3661b5f777ab66c5805

  • Size

    123KB

  • Sample

    240105-g2tassfec3

  • MD5

    42f7a91e9266e3661b5f777ab66c5805

  • SHA1

    c04d12c659a33119b2ef3280901606507bd64078

  • SHA256

    0be061c58b20542cc177fcc99a50f2b577a162e0e15bbe0d61fe24fbf02ad33c

  • SHA512

    84db63b68ef7c2acce001044aac61ed084cea3b7d83842f8655ccd3c7872f401e6af1acb81ca6a215f3e74938ad0418b0a6186ce9626c107d324235c0b8dd93f

  • SSDEEP

    3072:SKcWmjRrz3ZKcWmjRrz3ES29nqPIEhRCHCPFKv74CIdvJkxf:hGyG32qIEhRZzCIdhkxf

Malware Config

Targets

    • Target

      42f7a91e9266e3661b5f777ab66c5805

    • Size

      123KB

    • MD5

      42f7a91e9266e3661b5f777ab66c5805

    • SHA1

      c04d12c659a33119b2ef3280901606507bd64078

    • SHA256

      0be061c58b20542cc177fcc99a50f2b577a162e0e15bbe0d61fe24fbf02ad33c

    • SHA512

      84db63b68ef7c2acce001044aac61ed084cea3b7d83842f8655ccd3c7872f401e6af1acb81ca6a215f3e74938ad0418b0a6186ce9626c107d324235c0b8dd93f

    • SSDEEP

      3072:SKcWmjRrz3ZKcWmjRrz3ES29nqPIEhRCHCPFKv74CIdvJkxf:hGyG32qIEhRZzCIdhkxf

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks