Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    Packet_Tracer821_64bit_setup_signed.exe

  • Size

    227.3MB

  • Sample

    240521-hcrw4sbf2w

  • MD5

    12617fe807c3e4bfa5b0c4748c3b6ff2

  • SHA1

    b13af13de273d9ae41a6113aed93b965f6d14908

  • SHA256

    fa3dbe172cb9268b5d5b24ead0c32c26c25fb5d5b56fa72348b9099bcd429645

  • SHA512

    51ee864ce8cb48ee6645e3b7fe2086f950512035883e7bde39b57b320f56b9125468a8dda7f50557b5b2dd0dfba825f864622e3d5177f86b72dc1d57a6589c61

  • SSDEEP

    6291456:IZ7Mx06hFIDSblcjmwGsUGK4ZXW0lzwjZ:Iix06MWclG/GK4ZGc0jZ

Malware Config

Targets

    • Target

      Packet_Tracer821_64bit_setup_signed.exe

    • Size

      227.3MB

    • MD5

      12617fe807c3e4bfa5b0c4748c3b6ff2

    • SHA1

      b13af13de273d9ae41a6113aed93b965f6d14908

    • SHA256

      fa3dbe172cb9268b5d5b24ead0c32c26c25fb5d5b56fa72348b9099bcd429645

    • SHA512

      51ee864ce8cb48ee6645e3b7fe2086f950512035883e7bde39b57b320f56b9125468a8dda7f50557b5b2dd0dfba825f864622e3d5177f86b72dc1d57a6589c61

    • SSDEEP

      6291456:IZ7Mx06hFIDSblcjmwGsUGK4ZXW0lzwjZ:Iix06MWclG/GK4ZGc0jZ

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks