Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b241cc4565028cdc48012ad217e9a3fc

  • Size

    957KB

  • Sample

    240304-qvyflsce72

  • MD5

    b241cc4565028cdc48012ad217e9a3fc

  • SHA1

    2b0bdc82671b2bba3ad44cf07d9adb3b134d7905

  • SHA256

    e78734ac8ce2d344645016be76e346be1892b30503fbe4f91e69d42e2cd8c9c4

  • SHA512

    9f9f14605b1ddcd0e5764c1556e1f82cdaf5ae40aa914e63c2638422736b1c3c0e3b3f689c53df27e5aadfae0ae98b0f98936b96ddba3b1016ecff3340a91a20

  • SSDEEP

    24576:zHwRxfS4J9dm/XyR4B4nyD9OWKU/SXkv2qfOo4gplCugVmA4k7dAy:zHiFx4BeyDkZU6ut4DxP/yy

Malware Config

Targets

    • Target

      b241cc4565028cdc48012ad217e9a3fc

    • Size

      957KB

    • MD5

      b241cc4565028cdc48012ad217e9a3fc

    • SHA1

      2b0bdc82671b2bba3ad44cf07d9adb3b134d7905

    • SHA256

      e78734ac8ce2d344645016be76e346be1892b30503fbe4f91e69d42e2cd8c9c4

    • SHA512

      9f9f14605b1ddcd0e5764c1556e1f82cdaf5ae40aa914e63c2638422736b1c3c0e3b3f689c53df27e5aadfae0ae98b0f98936b96ddba3b1016ecff3340a91a20

    • SSDEEP

      24576:zHwRxfS4J9dm/XyR4B4nyD9OWKU/SXkv2qfOo4gplCugVmA4k7dAy:zHiFx4BeyDkZU6ut4DxP/yy

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks