Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f5b1fffa4b0df756d7b235f3fe868afd85c76da1f52d7b9f549d3bf2f865e654
-
Size
78KB
-
Sample
240611-ftte6awdrl
-
MD5
93c0add291e4f8137665056aa5488171
-
SHA1
462f288bf01b4045493e351ffb8b896bd662635b
-
SHA256
f5b1fffa4b0df756d7b235f3fe868afd85c76da1f52d7b9f549d3bf2f865e654
-
SHA512
d106a71105cc9490f939aac3172ffeb9f7ea7f5458dd21a409b1318d2e1f1944b77bf5fc696b8feb1bc53212f23bab21b4ab6deddeaa5276cbdfef067cd8f9c5
-
SSDEEP
768:hpQNwC3BEddsEqOt/hyJF+x3BEJwRrPHisKl4qhA:reTce/U/hKYuKPHisKldhA
Malware Config
Targets
-
-
Target
f5b1fffa4b0df756d7b235f3fe868afd85c76da1f52d7b9f549d3bf2f865e654
-
Size
78KB
-
MD5
93c0add291e4f8137665056aa5488171
-
SHA1
462f288bf01b4045493e351ffb8b896bd662635b
-
SHA256
f5b1fffa4b0df756d7b235f3fe868afd85c76da1f52d7b9f549d3bf2f865e654
-
SHA512
d106a71105cc9490f939aac3172ffeb9f7ea7f5458dd21a409b1318d2e1f1944b77bf5fc696b8feb1bc53212f23bab21b4ab6deddeaa5276cbdfef067cd8f9c5
-
SSDEEP
768:hpQNwC3BEddsEqOt/hyJF+x3BEJwRrPHisKl4qhA:reTce/U/hKYuKPHisKldhA
Score10/10-
Modifies visibility of file extensions in Explorer
-
Disables RegEdit via registry modification
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
3