Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    147a311e23a70d39901e97e2f9e9e1e7d63924b2f33dc4d55e5f380efbd14cac

  • Size

    71KB

  • Sample

    240408-xknlzsgg84

  • MD5

    e726537b599a4234602a0e2eb31b8bbe

  • SHA1

    7b258b352b553e6a3f5eb37ebcca49fe14ec4f49

  • SHA256

    147a311e23a70d39901e97e2f9e9e1e7d63924b2f33dc4d55e5f380efbd14cac

  • SHA512

    80172482c17e4d74f4d8c4e7a995f47331545283d4a07a2bf841796687a8c26afeec569bcc0ce03b852848dc8f60d208cf016482f33ee3fc0e2b8b1d96e7666c

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTd:ZRpAyazIliazTd

Malware Config

Targets

    • Target

      147a311e23a70d39901e97e2f9e9e1e7d63924b2f33dc4d55e5f380efbd14cac

    • Size

      71KB

    • MD5

      e726537b599a4234602a0e2eb31b8bbe

    • SHA1

      7b258b352b553e6a3f5eb37ebcca49fe14ec4f49

    • SHA256

      147a311e23a70d39901e97e2f9e9e1e7d63924b2f33dc4d55e5f380efbd14cac

    • SHA512

      80172482c17e4d74f4d8c4e7a995f47331545283d4a07a2bf841796687a8c26afeec569bcc0ce03b852848dc8f60d208cf016482f33ee3fc0e2b8b1d96e7666c

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTd:ZRpAyazIliazTd

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks