Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    20894d7c8fa769521867065dc956ff34

  • Size

    71KB

  • Sample

    240409-xyqnhaae3w

  • MD5

    20894d7c8fa769521867065dc956ff34

  • SHA1

    4a5623d7f8705c417d51d4ac8a47bf15e9346dcc

  • SHA256

    f5204eb2a2bc913dd2f447207299524e69acae95064c25f1c9f39358df5251ab

  • SHA512

    1fad5d36df2edcd4b7afd83a99371d1107f277c542cfa35222d39be06169c4cfb7bf7cc27904fc18b11634d8ae63375904edc9113df992e387900e02ecd353dc

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTe:ZhpAyazIlyazTe

Malware Config

Targets

    • Target

      20894d7c8fa769521867065dc956ff34

    • Size

      71KB

    • MD5

      20894d7c8fa769521867065dc956ff34

    • SHA1

      4a5623d7f8705c417d51d4ac8a47bf15e9346dcc

    • SHA256

      f5204eb2a2bc913dd2f447207299524e69acae95064c25f1c9f39358df5251ab

    • SHA512

      1fad5d36df2edcd4b7afd83a99371d1107f277c542cfa35222d39be06169c4cfb7bf7cc27904fc18b11634d8ae63375904edc9113df992e387900e02ecd353dc

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTe:ZhpAyazIlyazTe

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks