Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1581f024f05cc7e3abecef510aa13a9e13d9f6703eda9ef40d2241dcf749a9f3

  • Size

    80KB

  • Sample

    240630-xpff6ssfqa

  • MD5

    ef26e169018e94c57444e6634973bb09

  • SHA1

    48c21d0822b6d1f407146b83c17f6bc676ab2a24

  • SHA256

    1581f024f05cc7e3abecef510aa13a9e13d9f6703eda9ef40d2241dcf749a9f3

  • SHA512

    e58af650caa22c2066a5a8c4d427967c4fe8361558412642c0cc8da2c38ce6cdde0066ceaefae740b3877530b29830dc4d3dbf63a34afdf93655a3bf5e45c938

  • SSDEEP

    1536:t3x85+Ks2KapmaE4dbfhc4dv92eZVMTtbmDfSIcOmXU9Nuuc1:th85+KsMpfd1ddMTtqSJXU9wuc1

Malware Config

Targets

    • Target

      1581f024f05cc7e3abecef510aa13a9e13d9f6703eda9ef40d2241dcf749a9f3

    • Size

      80KB

    • MD5

      ef26e169018e94c57444e6634973bb09

    • SHA1

      48c21d0822b6d1f407146b83c17f6bc676ab2a24

    • SHA256

      1581f024f05cc7e3abecef510aa13a9e13d9f6703eda9ef40d2241dcf749a9f3

    • SHA512

      e58af650caa22c2066a5a8c4d427967c4fe8361558412642c0cc8da2c38ce6cdde0066ceaefae740b3877530b29830dc4d3dbf63a34afdf93655a3bf5e45c938

    • SSDEEP

      1536:t3x85+Ks2KapmaE4dbfhc4dv92eZVMTtbmDfSIcOmXU9Nuuc1:th85+KsMpfd1ddMTtqSJXU9wuc1

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks