Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b4d49f90e09b4d7071006c41a95fb0b4

  • Size

    2.4MB

  • Sample

    240305-qxv39sha23

  • MD5

    b4d49f90e09b4d7071006c41a95fb0b4

  • SHA1

    ac812d9c63c401ab3deb565f609ca7e6730cbf64

  • SHA256

    9c172683d4cde026c19d3b82657b353799796180e92ddcdf03406bb39c3966a2

  • SHA512

    76164d7a8a5140372db12318b04b385839d38591b80eea7b0202c3f1f40273fd75a724185895323c804eb6f88929aa573b6c9f2ae2a2dd9f10830eac5f59d571

  • SSDEEP

    49152:SH3H57DeODPOvljkv9ME8xmN3Aek03noj45wlDT:i7DeU9ReUJF3noxD

Malware Config

Targets

    • Target

      b4d49f90e09b4d7071006c41a95fb0b4

    • Size

      2.4MB

    • MD5

      b4d49f90e09b4d7071006c41a95fb0b4

    • SHA1

      ac812d9c63c401ab3deb565f609ca7e6730cbf64

    • SHA256

      9c172683d4cde026c19d3b82657b353799796180e92ddcdf03406bb39c3966a2

    • SHA512

      76164d7a8a5140372db12318b04b385839d38591b80eea7b0202c3f1f40273fd75a724185895323c804eb6f88929aa573b6c9f2ae2a2dd9f10830eac5f59d571

    • SSDEEP

      49152:SH3H57DeODPOvljkv9ME8xmN3Aek03noj45wlDT:i7DeU9ReUJF3noxD

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks