Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    085e324e016843d9b4a79c7644cbd3b00ed3daf4a814290ba91206704330390b

  • Size

    3.1MB

  • Sample

    240430-w7qt7adb3x

  • MD5

    4c5d0fbae00c38eed59d9199f4e2dcbf

  • SHA1

    e5e072dfa48b7afb272108d63f11897a818cce82

  • SHA256

    085e324e016843d9b4a79c7644cbd3b00ed3daf4a814290ba91206704330390b

  • SHA512

    c8372a26491237538d9df3f4e20c2589991534fb7e38cdbbd98e39b6a34379974bae865b74de818551d3e27c2f0d78fc94c8800565502c2fb6889e99033a5f28

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bSqz8:sxX7QnxrloE5dpUpsbVz8

Malware Config

Targets

    • Target

      085e324e016843d9b4a79c7644cbd3b00ed3daf4a814290ba91206704330390b

    • Size

      3.1MB

    • MD5

      4c5d0fbae00c38eed59d9199f4e2dcbf

    • SHA1

      e5e072dfa48b7afb272108d63f11897a818cce82

    • SHA256

      085e324e016843d9b4a79c7644cbd3b00ed3daf4a814290ba91206704330390b

    • SHA512

      c8372a26491237538d9df3f4e20c2589991534fb7e38cdbbd98e39b6a34379974bae865b74de818551d3e27c2f0d78fc94c8800565502c2fb6889e99033a5f28

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bSqz8:sxX7QnxrloE5dpUpsbVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks