Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4bf9b3895f53d39ef73c56a9d31e5220_NEAS

  • Size

    3.1MB

  • Sample

    240507-ce3thagd49

  • MD5

    4bf9b3895f53d39ef73c56a9d31e5220

  • SHA1

    3ae614c93f23e2fb305d00c060faa193c99d6d67

  • SHA256

    e6a9e265fcf756c6cd0d50899d1ade8feea40933ee0f8c1f48625ff71b11da46

  • SHA512

    3f6360088ec782760437dead352b4bb044475a5902557617ddc1f6d2c5dd099dc6acecf311a55acbdfdab0c35a7baddf301d3be9e3cb017218f69f9e6d9f524e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpSbVz8eLFc

Malware Config

Targets

    • Target

      4bf9b3895f53d39ef73c56a9d31e5220_NEAS

    • Size

      3.1MB

    • MD5

      4bf9b3895f53d39ef73c56a9d31e5220

    • SHA1

      3ae614c93f23e2fb305d00c060faa193c99d6d67

    • SHA256

      e6a9e265fcf756c6cd0d50899d1ade8feea40933ee0f8c1f48625ff71b11da46

    • SHA512

      3f6360088ec782760437dead352b4bb044475a5902557617ddc1f6d2c5dd099dc6acecf311a55acbdfdab0c35a7baddf301d3be9e3cb017218f69f9e6d9f524e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpSbVz8eLFc

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks