Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9091ac88e4b7abfc96732beffe93244ae8a5c68418a299f8d36f111e0492db54

  • Size

    647KB

  • Sample

    240502-avncmsbf5w

  • MD5

    583c19112696d99b42cf4bac57441de7

  • SHA1

    cef852e2ce9380c515a6b8731372ceff029a211e

  • SHA256

    9091ac88e4b7abfc96732beffe93244ae8a5c68418a299f8d36f111e0492db54

  • SHA512

    8d04ae10cd8e1f913b76e0e119a4bd7582dd6e0e3311c4994c720177bd71c7c716d03d6f4bf26469d0defd616d8d62b1e4a52a02e6c1e960c09e78f2540d7815

  • SSDEEP

    12288:VDmhitcwzQucvRThr9BpiGKFZmDMrFYiwZ8/8ystPIcGgQIJnw2CZWNOvH2j:FmhitcoYFrgGIZjrcPIcGoJnw2Qr

Score
7/10

Malware Config

Targets

    • Target

      9091ac88e4b7abfc96732beffe93244ae8a5c68418a299f8d36f111e0492db54

    • Size

      647KB

    • MD5

      583c19112696d99b42cf4bac57441de7

    • SHA1

      cef852e2ce9380c515a6b8731372ceff029a211e

    • SHA256

      9091ac88e4b7abfc96732beffe93244ae8a5c68418a299f8d36f111e0492db54

    • SHA512

      8d04ae10cd8e1f913b76e0e119a4bd7582dd6e0e3311c4994c720177bd71c7c716d03d6f4bf26469d0defd616d8d62b1e4a52a02e6c1e960c09e78f2540d7815

    • SSDEEP

      12288:VDmhitcwzQucvRThr9BpiGKFZmDMrFYiwZ8/8ystPIcGgQIJnw2CZWNOvH2j:FmhitcoYFrgGIZjrcPIcGoJnw2Qr

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks