Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ba58a01cd5ac7b2c9b9fe9691fce476a

  • Size

    122KB

  • Sample

    240308-dgl47sef8w

  • MD5

    ba58a01cd5ac7b2c9b9fe9691fce476a

  • SHA1

    f74d1c47f8f2cf6606c8ac9af595f13c20eff7f9

  • SHA256

    101bae005b01783cf78775f07100f9c0178ce14d341d246c8030d90525097c3f

  • SHA512

    d3cc4a6d981222230edc53dcc35252787b024bf15756052820e76c3e76539aa434c048b64fcdf2ec1ceecc51d2f08db4d983be11f5a598871d9c1a522649c385

  • SSDEEP

    3072:sr3KcWmjRrzSrY1v1b05ZjY3shX+JYREg0V2jN:/bopANYcpJRp0wjN

Malware Config

Targets

    • Target

      ba58a01cd5ac7b2c9b9fe9691fce476a

    • Size

      122KB

    • MD5

      ba58a01cd5ac7b2c9b9fe9691fce476a

    • SHA1

      f74d1c47f8f2cf6606c8ac9af595f13c20eff7f9

    • SHA256

      101bae005b01783cf78775f07100f9c0178ce14d341d246c8030d90525097c3f

    • SHA512

      d3cc4a6d981222230edc53dcc35252787b024bf15756052820e76c3e76539aa434c048b64fcdf2ec1ceecc51d2f08db4d983be11f5a598871d9c1a522649c385

    • SSDEEP

      3072:sr3KcWmjRrzSrY1v1b05ZjY3shX+JYREg0V2jN:/bopANYcpJRp0wjN

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks