Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c69e864715348c2f660dc2ac3c1f224e

  • Size

    200KB

  • Sample

    240313-xhvyaaeg83

  • MD5

    c69e864715348c2f660dc2ac3c1f224e

  • SHA1

    4e6fd2fb2faf70ae04f43bc4128bc2889e937355

  • SHA256

    12c641c0ee76131f0b31f1585d9592d7b12c8d6590a27e1a7f398d2778cf4406

  • SHA512

    b7f9d415dd85ae18a07b042f3a068411ae3092dca462aab80d4dc12b434bb18953dec6f53b3f430691683418ec55b93c9898ccff63ab9900daa7c9cfd4d43cef

  • SSDEEP

    6144:jlLq/I+mO31DBybYdTJgr9OuZjOVce3BHdmzG39:hLqbN33RJgnRgVH4zGt

Malware Config

Targets

    • Target

      c69e864715348c2f660dc2ac3c1f224e

    • Size

      200KB

    • MD5

      c69e864715348c2f660dc2ac3c1f224e

    • SHA1

      4e6fd2fb2faf70ae04f43bc4128bc2889e937355

    • SHA256

      12c641c0ee76131f0b31f1585d9592d7b12c8d6590a27e1a7f398d2778cf4406

    • SHA512

      b7f9d415dd85ae18a07b042f3a068411ae3092dca462aab80d4dc12b434bb18953dec6f53b3f430691683418ec55b93c9898ccff63ab9900daa7c9cfd4d43cef

    • SSDEEP

      6144:jlLq/I+mO31DBybYdTJgr9OuZjOVce3BHdmzG39:hLqbN33RJgnRgVH4zGt

    • Disables taskbar notifications via registry modification

    • Modifies Installed Components in the registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks