Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0

  • Size

    2.6MB

  • Sample

    240617-c1rncsvbnr

  • MD5

    39910773f8deb3a8f3dd9e0a65c7e1c7

  • SHA1

    166bf90ea54d8ee3398fa9176c9164265f475078

  • SHA256

    d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0

  • SHA512

    1ae84a57c9f628584f6754ad0e84c6d82d268f21cd1c3096574572714bae54c7bc1b43103512f9f81fc8a96a978ec900305c867eab82b8d19530f1c5d9f808b9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUp7b

Malware Config

Targets

    • Target

      d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0

    • Size

      2.6MB

    • MD5

      39910773f8deb3a8f3dd9e0a65c7e1c7

    • SHA1

      166bf90ea54d8ee3398fa9176c9164265f475078

    • SHA256

      d0e2e3ce6992890b66ea4773fd9c6549274d36843ac7467a8107ae0270cdeba0

    • SHA512

      1ae84a57c9f628584f6754ad0e84c6d82d268f21cd1c3096574572714bae54c7bc1b43103512f9f81fc8a96a978ec900305c867eab82b8d19530f1c5d9f808b9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUp7b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks