Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    65a6a7eb140ac1c9ef0036af6880645a

  • Size

    288KB

  • Sample

    240118-wecrvsfah3

  • MD5

    65a6a7eb140ac1c9ef0036af6880645a

  • SHA1

    495a0a275b06b7db09b20adf32085d143143c590

  • SHA256

    20bfa115a8606b230d4e6a1fc7ca7fda8f623b0a783a0cfbfa09201a8ba63909

  • SHA512

    5595ddaafbb64f169a2af0b55ef96414b325505ae40c5aec169be0a8c2bfadf2e3dc594714f89829a8597de479cda1b746fb3784bc7f3632c75158e26a162795

  • SSDEEP

    6144:wejcki1BSRm6W2k5F0f2t6b+vClRHUcivtJOkRGP07ByaB22U9F/R:wejckifOm67oFZt6KqlKRvtJOkRGmwtJ

Malware Config

Targets

    • Target

      65a6a7eb140ac1c9ef0036af6880645a

    • Size

      288KB

    • MD5

      65a6a7eb140ac1c9ef0036af6880645a

    • SHA1

      495a0a275b06b7db09b20adf32085d143143c590

    • SHA256

      20bfa115a8606b230d4e6a1fc7ca7fda8f623b0a783a0cfbfa09201a8ba63909

    • SHA512

      5595ddaafbb64f169a2af0b55ef96414b325505ae40c5aec169be0a8c2bfadf2e3dc594714f89829a8597de479cda1b746fb3784bc7f3632c75158e26a162795

    • SSDEEP

      6144:wejcki1BSRm6W2k5F0f2t6b+vClRHUcivtJOkRGP07ByaB22U9F/R:wejckifOm67oFZt6KqlKRvtJOkRGmwtJ

    • Disables taskbar notifications via registry modification

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks