Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4c9cdd61249483c4ef050c43a664fdfe8322cf82b07b914b94c9002e2979cd94

  • Size

    4.1MB

  • Sample

    240603-z4n3zahd5s

  • MD5

    88ff053add827f525cb99740b26cc056

  • SHA1

    da9f98795713cb42c7ff68b112de863cd9e3b6f4

  • SHA256

    4c9cdd61249483c4ef050c43a664fdfe8322cf82b07b914b94c9002e2979cd94

  • SHA512

    bff162de8ca248b3ced9c0387ff31fd71a1328d7bae74ab2d1248d8269f224822058e4cfa96898b79848df04306e0661ff1436e5a91af142d291c12c90e50e29

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB8B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpDbVz8eLFcz

Malware Config

Targets

    • Target

      4c9cdd61249483c4ef050c43a664fdfe8322cf82b07b914b94c9002e2979cd94

    • Size

      4.1MB

    • MD5

      88ff053add827f525cb99740b26cc056

    • SHA1

      da9f98795713cb42c7ff68b112de863cd9e3b6f4

    • SHA256

      4c9cdd61249483c4ef050c43a664fdfe8322cf82b07b914b94c9002e2979cd94

    • SHA512

      bff162de8ca248b3ced9c0387ff31fd71a1328d7bae74ab2d1248d8269f224822058e4cfa96898b79848df04306e0661ff1436e5a91af142d291c12c90e50e29

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB8B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpDbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks