Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    75fd0abc36a2cb066e0772956abeac5f_NEAS

  • Size

    999KB

  • Sample

    240508-tzkbbsdd6z

  • MD5

    75fd0abc36a2cb066e0772956abeac5f

  • SHA1

    644e6d4d21afe1316388de8f86c465f20b3a5d3b

  • SHA256

    e6098c1f9e5f0da35a67740c5bd9306bf11eab208d4572de28b99b2afe6e07c3

  • SHA512

    c3ff6bb0659121118f90106c0fbec8307bbd34e6f8f78982b02a26c4c271f520c4f3ed34c6d38421258fc6b6bebbf353166a47bfe3357a190583552e3cc5a30d

  • SSDEEP

    12288:7UPUQUPUc4UP4w7oyXnZgS1MSUPUQUPU2V5KV5izrqFkb74UP4w7oyXnZgS1MS:gsZsq0ynSHjsZs2IifqFur0ynSHS

Malware Config

Targets

    • Target

      75fd0abc36a2cb066e0772956abeac5f_NEAS

    • Size

      999KB

    • MD5

      75fd0abc36a2cb066e0772956abeac5f

    • SHA1

      644e6d4d21afe1316388de8f86c465f20b3a5d3b

    • SHA256

      e6098c1f9e5f0da35a67740c5bd9306bf11eab208d4572de28b99b2afe6e07c3

    • SHA512

      c3ff6bb0659121118f90106c0fbec8307bbd34e6f8f78982b02a26c4c271f520c4f3ed34c6d38421258fc6b6bebbf353166a47bfe3357a190583552e3cc5a30d

    • SSDEEP

      12288:7UPUQUPUc4UP4w7oyXnZgS1MSUPUQUPU2V5KV5izrqFkb74UP4w7oyXnZgS1MS:gsZsq0ynSHjsZs2IifqFur0ynSHS

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks