Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6707f4bf94da5453439f5be662361a10.bin

  • Size

    333KB

  • Sample

    240510-bzxbsaed83

  • MD5

    6707f4bf94da5453439f5be662361a10

  • SHA1

    f10ce9409c260d703058fa8228d432e35a212eaf

  • SHA256

    be2b45e4f97d74582a0529cc64da0acda4bdcbcc1298161b0d34b2bae832d3ee

  • SHA512

    06c462b1627ee6fc19757bffd3c24ff4cbb00331d7de5d4d6202b1e5f1e27aa2643b05dda048aba2ea9a9f08b32dc14e586a76ca324c4b4e13c4d29a08c2fc58

  • SSDEEP

    6144:ppMM8EV1ODepMM8CrjFyfjn0sfiUBpqpebi3vmnFn4lAVC9O5j:UxRinFyfr0sfbLi3vmF6Pij

Malware Config

Targets

    • Target

      6707f4bf94da5453439f5be662361a10.bin

    • Size

      333KB

    • MD5

      6707f4bf94da5453439f5be662361a10

    • SHA1

      f10ce9409c260d703058fa8228d432e35a212eaf

    • SHA256

      be2b45e4f97d74582a0529cc64da0acda4bdcbcc1298161b0d34b2bae832d3ee

    • SHA512

      06c462b1627ee6fc19757bffd3c24ff4cbb00331d7de5d4d6202b1e5f1e27aa2643b05dda048aba2ea9a9f08b32dc14e586a76ca324c4b4e13c4d29a08c2fc58

    • SSDEEP

      6144:ppMM8EV1ODepMM8CrjFyfjn0sfiUBpqpebi3vmnFn4lAVC9O5j:UxRinFyfr0sfbLi3vmF6Pij

    • Contacts a large (1286) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks