Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    idman642build7.exe

  • Size

    11.5MB

  • Sample

    240408-2vyl6ahf3s

  • MD5

    90d466ba9776c002ba7ca33a0eea3f67

  • SHA1

    7f66802c42ac1a3034d9f0de06eda84672635b1f

  • SHA256

    c29243c0c9f81992ce2e76a93c81bcfb46d96faca9e27fc3961fd6d0174c0851

  • SHA512

    c3f768e28d760425b1fef0c3ccf24632997976d7fc494eb15facd38ba33de152266a53791d3f71ad3e240104d5e1fc66e067dea9fb7bdd5931c8114dc1b1c8f8

  • SSDEEP

    196608:lH5pKHiGKKE+IW8Nou8YiUKsCvrXjfzNxqnZfIXRyc9D2peOGCeHq+:rYqRUZtDXVx6Znc9KpqCuq+

Malware Config

Targets

    • Target

      idman642build7.exe

    • Size

      11.5MB

    • MD5

      90d466ba9776c002ba7ca33a0eea3f67

    • SHA1

      7f66802c42ac1a3034d9f0de06eda84672635b1f

    • SHA256

      c29243c0c9f81992ce2e76a93c81bcfb46d96faca9e27fc3961fd6d0174c0851

    • SHA512

      c3f768e28d760425b1fef0c3ccf24632997976d7fc494eb15facd38ba33de152266a53791d3f71ad3e240104d5e1fc66e067dea9fb7bdd5931c8114dc1b1c8f8

    • SSDEEP

      196608:lH5pKHiGKKE+IW8Nou8YiUKsCvrXjfzNxqnZfIXRyc9D2peOGCeHq+:rYqRUZtDXVx6Znc9KpqCuq+

    • Drops file in Drivers directory

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.