Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    AnthemScore_installer_windows_x86_64.exe

  • Size

    20.6MB

  • Sample

    240420-g2qvnsae24

  • MD5

    746560ad63c2f2ccd5d7f2d43fe005ae

  • SHA1

    299a29a2e5f2e2fa144a4a779bbc3698cf044e31

  • SHA256

    5bf2d564fdf510152de7de42aa84e19ebf9b5133706f9dc886ad7914168530cd

  • SHA512

    24d362371cad5dbb9dc4f841e036fbded40b9a14a41dbc51673127736b3993cc4b7714ac8abad2b70a75a1acd7be871099d23965bc3aae31156de3443f5c128e

  • SSDEEP

    393216:icG3VLZOTokEXS9QSFhgPvKIi5Jsv6tWKFdu9CSW3:mLZOJES9rhgPiKW3

Malware Config

Targets

    • Target

      AnthemScore_installer_windows_x86_64.exe

    • Size

      20.6MB

    • MD5

      746560ad63c2f2ccd5d7f2d43fe005ae

    • SHA1

      299a29a2e5f2e2fa144a4a779bbc3698cf044e31

    • SHA256

      5bf2d564fdf510152de7de42aa84e19ebf9b5133706f9dc886ad7914168530cd

    • SHA512

      24d362371cad5dbb9dc4f841e036fbded40b9a14a41dbc51673127736b3993cc4b7714ac8abad2b70a75a1acd7be871099d23965bc3aae31156de3443f5c128e

    • SSDEEP

      393216:icG3VLZOTokEXS9QSFhgPvKIi5Jsv6tWKFdu9CSW3:mLZOJES9rhgPiKW3

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks