Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    98106a7a7b57096782d2b746e30093ec.exe

  • Size

    907KB

  • Sample

    240111-vxll2scehm

  • MD5

    98106a7a7b57096782d2b746e30093ec

  • SHA1

    4e32f25cc217d9fa6993e5adf1cb91fd5ff354bc

  • SHA256

    e45f014750c900d570719a1b99e18f0e39ee50f2bdf6f108610c3e7c8ffea1ec

  • SHA512

    df8bc66f7ac17d70e9e90bf386d30b7965341d8104e0457ad257f01d1c2bad72ddb11420257cc8abc94153325f0af9af60ccb651d2a9af1045114b00c04f1435

  • SSDEEP

    24576:oWz/WVsrNd+XgyQvZP8EBPBx+DTO/Ra5B:Vz/6sJdJZkEBJx+DTQRg

Malware Config

Targets

    • Target

      98106a7a7b57096782d2b746e30093ec.exe

    • Size

      907KB

    • MD5

      98106a7a7b57096782d2b746e30093ec

    • SHA1

      4e32f25cc217d9fa6993e5adf1cb91fd5ff354bc

    • SHA256

      e45f014750c900d570719a1b99e18f0e39ee50f2bdf6f108610c3e7c8ffea1ec

    • SHA512

      df8bc66f7ac17d70e9e90bf386d30b7965341d8104e0457ad257f01d1c2bad72ddb11420257cc8abc94153325f0af9af60ccb651d2a9af1045114b00c04f1435

    • SSDEEP

      24576:oWz/WVsrNd+XgyQvZP8EBPBx+DTO/Ra5B:Vz/6sJdJZkEBJx+DTQRg

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks