Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    DiscordSetup (2).exe

  • Size

    91.7MB

  • Sample

    240221-nzd7eseg3s

  • MD5

    f436a7d1482c45132be1aaf6117af938

  • SHA1

    0c7817a11b8b3d97d46ab2cfebf23a8901315fc4

  • SHA256

    380317fac753ab94b6443709a0c8f9230d829288f61038e0490938b4fb1aff74

  • SHA512

    fbc283b9e8e55b0a98784c6fb74ed3a3bc2ec402a274aeafc57ca04f9933a3d7f77f76c5957f0e41aded6060c81e3421867d3aec70b7a77d0f28d38e375a839c

  • SSDEEP

    1572864:ZPbzMgmOg0fV+8nFhzQnP1cS2pF9DhElBgvN/jOWgvjH9otWn1Mc6kOT:tTcSzyiS2n9mBgvROLmtW/6xT

Malware Config

Targets

    • Target

      DiscordSetup (2).exe

    • Size

      91.7MB

    • MD5

      f436a7d1482c45132be1aaf6117af938

    • SHA1

      0c7817a11b8b3d97d46ab2cfebf23a8901315fc4

    • SHA256

      380317fac753ab94b6443709a0c8f9230d829288f61038e0490938b4fb1aff74

    • SHA512

      fbc283b9e8e55b0a98784c6fb74ed3a3bc2ec402a274aeafc57ca04f9933a3d7f77f76c5957f0e41aded6060c81e3421867d3aec70b7a77d0f28d38e375a839c

    • SSDEEP

      1572864:ZPbzMgmOg0fV+8nFhzQnP1cS2pF9DhElBgvN/jOWgvjH9otWn1Mc6kOT:tTcSzyiS2n9mBgvROLmtW/6xT

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Adds Run key to start application

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks