Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-07-01_e30d5405e0c75e463d567e485e1d0223_chir_icedid

  • Size

    158KB

  • Sample

    240701-t26x4sydme

  • MD5

    e30d5405e0c75e463d567e485e1d0223

  • SHA1

    ae569f483f95c2b324e4d2118ca2cb84d7386941

  • SHA256

    b295f0efeea35a133b30eb386a14216cd519828b88f4047b11cb9ac543daaac5

  • SHA512

    c916608e29741a531ea0f3c82149305f8d062c69627d1b3ab15ad1bf0ec19cf3cc8441729642e62dda4357b476a50203de4df8b4bcfd3e203b75f1794c76c4d3

  • SSDEEP

    3072:bLyb9xNTwvhIF19br5Bc5OZcOhUsmXkcxyhZAXlDrbHWQM8/Vy1Pvaa+CkzRZ+Y/:uxNTShma5KJqTXkU+mZp

Malware Config

Targets

    • Target

      2024-07-01_e30d5405e0c75e463d567e485e1d0223_chir_icedid

    • Size

      158KB

    • MD5

      e30d5405e0c75e463d567e485e1d0223

    • SHA1

      ae569f483f95c2b324e4d2118ca2cb84d7386941

    • SHA256

      b295f0efeea35a133b30eb386a14216cd519828b88f4047b11cb9ac543daaac5

    • SHA512

      c916608e29741a531ea0f3c82149305f8d062c69627d1b3ab15ad1bf0ec19cf3cc8441729642e62dda4357b476a50203de4df8b4bcfd3e203b75f1794c76c4d3

    • SSDEEP

      3072:bLyb9xNTwvhIF19br5Bc5OZcOhUsmXkcxyhZAXlDrbHWQM8/Vy1Pvaa+CkzRZ+Y/:uxNTShma5KJqTXkU+mZp

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks