Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    OperaSetup.exe

  • Size

    2.0MB

  • Sample

    240603-tp2smaca5y

  • MD5

    ff21f2d888845a2a00eaa5ce2b46cb6c

  • SHA1

    ba00a62210791c653138d2f19d2135a008e8672f

  • SHA256

    bdaf682d8b72b0b5a156765ff43eac21a612f803a81fab242f1817823d23f3b7

  • SHA512

    a8a5be0873485063814a011e087d3a0a2cc2b94d9a51331141182c3a5220cc797ff64e6cb27f84f467240eda85b664da0399b71ee438f94243caff199ceda586

  • SSDEEP

    49152:+NEyYcQ78Kpjjxv6htWn1iTl0egZ3s0OSZsnh7f3kHMq2:0EP784oysWj3s0GhYMq2

Score
8/10

Malware Config

Targets

    • Target

      OperaSetup.exe

    • Size

      2.0MB

    • MD5

      ff21f2d888845a2a00eaa5ce2b46cb6c

    • SHA1

      ba00a62210791c653138d2f19d2135a008e8672f

    • SHA256

      bdaf682d8b72b0b5a156765ff43eac21a612f803a81fab242f1817823d23f3b7

    • SHA512

      a8a5be0873485063814a011e087d3a0a2cc2b94d9a51331141182c3a5220cc797ff64e6cb27f84f467240eda85b664da0399b71ee438f94243caff199ceda586

    • SSDEEP

      49152:+NEyYcQ78Kpjjxv6htWn1iTl0egZ3s0OSZsnh7f3kHMq2:0EP784oysWj3s0GhYMq2

    Score
    8/10
    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks