Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4d9cfcc2918f88b3117c4a0f26993871

  • Size

    115KB

  • Sample

    240109-hfy5lachcl

  • MD5

    4d9cfcc2918f88b3117c4a0f26993871

  • SHA1

    62ad2cc7eee020573c9a03091c3ecace579d9b5f

  • SHA256

    5cd7eabb41b5074ed5643baedac594859105f232eb8af3603b67c04372354410

  • SHA512

    dcc4eb04e43c5792941bf5bd44d780c38694c1f73cbe80c52527f08d8e66a515e10eb02ef4ad30ad029f094b9fc7fddf40ec21a5a65de35aa23648039fe1eed7

  • SSDEEP

    3072:SKcWmjRrz3ZKcWmjRrz3Cd7t3jP2QECPw9b:hGyGCHcCPk

Malware Config

Targets

    • Target

      4d9cfcc2918f88b3117c4a0f26993871

    • Size

      115KB

    • MD5

      4d9cfcc2918f88b3117c4a0f26993871

    • SHA1

      62ad2cc7eee020573c9a03091c3ecace579d9b5f

    • SHA256

      5cd7eabb41b5074ed5643baedac594859105f232eb8af3603b67c04372354410

    • SHA512

      dcc4eb04e43c5792941bf5bd44d780c38694c1f73cbe80c52527f08d8e66a515e10eb02ef4ad30ad029f094b9fc7fddf40ec21a5a65de35aa23648039fe1eed7

    • SSDEEP

      3072:SKcWmjRrz3ZKcWmjRrz3Cd7t3jP2QECPw9b:hGyGCHcCPk

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks