Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    BROOKIE.exe

  • Size

    21.4MB

  • Sample

    240525-xh3ywsec6t

  • MD5

    50b2f67c4b2e7992082116677da3a797

  • SHA1

    05cf43e873de34382c55302c6a4fc3f84ea5a57a

  • SHA256

    2b9b6341d22f2d606f71c7e1be821ccf7a48a034ddd16f150c2c4ae9304eafbf

  • SHA512

    02c9fe209175dac8b05d43e95f01ae94ff065e1526cf9dc5cf66bc1d16646004cfba0f8031d8cf6f2889010b66b0202870a5ba97d42d421c8962a2e69c1ebdcf

  • SSDEEP

    393216:1Ek2Q858C093HJWQsUcR4NzxdVSSJEVOfS2rAkQy8tPhgJ:1+Qu093HYQFZ/S6fSo0tPWJ

Malware Config

Targets

    • Target

      BROOKIE.exe

    • Size

      21.4MB

    • MD5

      50b2f67c4b2e7992082116677da3a797

    • SHA1

      05cf43e873de34382c55302c6a4fc3f84ea5a57a

    • SHA256

      2b9b6341d22f2d606f71c7e1be821ccf7a48a034ddd16f150c2c4ae9304eafbf

    • SHA512

      02c9fe209175dac8b05d43e95f01ae94ff065e1526cf9dc5cf66bc1d16646004cfba0f8031d8cf6f2889010b66b0202870a5ba97d42d421c8962a2e69c1ebdcf

    • SSDEEP

      393216:1Ek2Q858C093HJWQsUcR4NzxdVSSJEVOfS2rAkQy8tPhgJ:1+Qu093HYQFZ/S6fSo0tPWJ

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks