Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1cb3036969df6bb04138d0b3ef525700927bd9bdc062780461df4bcc00c1e406

  • Size

    2.6MB

  • Sample

    240619-x4kpfasekj

  • MD5

    0b1f2ebd224c081ab73d762b3b8b1328

  • SHA1

    93b358aa780db54a25bc274318299b1ee62b6300

  • SHA256

    1cb3036969df6bb04138d0b3ef525700927bd9bdc062780461df4bcc00c1e406

  • SHA512

    7b65d1d86b88a622195f77231c70f4d8ce5a1b7a111033e9cd280693bd4cc1a2e78476aa603184d958a3c6824bcb5b71a40a20fec1938a7420511ba0e1a7ad34

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bS:sxX7QnxrloE5dpUpIb

Malware Config

Targets

    • Target

      1cb3036969df6bb04138d0b3ef525700927bd9bdc062780461df4bcc00c1e406

    • Size

      2.6MB

    • MD5

      0b1f2ebd224c081ab73d762b3b8b1328

    • SHA1

      93b358aa780db54a25bc274318299b1ee62b6300

    • SHA256

      1cb3036969df6bb04138d0b3ef525700927bd9bdc062780461df4bcc00c1e406

    • SHA512

      7b65d1d86b88a622195f77231c70f4d8ce5a1b7a111033e9cd280693bd4cc1a2e78476aa603184d958a3c6824bcb5b71a40a20fec1938a7420511ba0e1a7ad34

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bS:sxX7QnxrloE5dpUpIb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks