Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b5844507e6b37038884dd1f0a674e1c9

  • Size

    821KB

  • Sample

    240305-yffw1sfd91

  • MD5

    b5844507e6b37038884dd1f0a674e1c9

  • SHA1

    abcf9e3b1f75450e8dde452840a66c0c39ba5fa0

  • SHA256

    1c81c5c39a086d485a556c626303153a8125e2f28b638a23b7f3ea79784dbc3e

  • SHA512

    c98690149a0588a13f044700fc6bb58faac37de1bab408bbf026260cd4654499f07c8dbd5861c0b6ab660f0d9397fbd6f6ffa86098e9f6e0f19a21c84eda2303

  • SSDEEP

    6144:ntaHta+2dMQRcR0FZXpWEFx2x/MEuzzcxeT0IJCkaZ1M/IabjKoh9WqrY:8c0QRlHFLEuzYxHIsvM/IabjKoh9WqrY

Malware Config

Targets

    • Target

      b5844507e6b37038884dd1f0a674e1c9

    • Size

      821KB

    • MD5

      b5844507e6b37038884dd1f0a674e1c9

    • SHA1

      abcf9e3b1f75450e8dde452840a66c0c39ba5fa0

    • SHA256

      1c81c5c39a086d485a556c626303153a8125e2f28b638a23b7f3ea79784dbc3e

    • SHA512

      c98690149a0588a13f044700fc6bb58faac37de1bab408bbf026260cd4654499f07c8dbd5861c0b6ab660f0d9397fbd6f6ffa86098e9f6e0f19a21c84eda2303

    • SSDEEP

      6144:ntaHta+2dMQRcR0FZXpWEFx2x/MEuzzcxeT0IJCkaZ1M/IabjKoh9WqrY:8c0QRlHFLEuzYxHIsvM/IabjKoh9WqrY

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks