Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    91ab8f3f8f9d99ad59f99299e1cf858e.bin

  • Size

    7.3MB

  • Sample

    240703-daq5kstdqe

  • MD5

    91ab8f3f8f9d99ad59f99299e1cf858e

  • SHA1

    bd33293c34ec4d98a746268053213a37d483ec47

  • SHA256

    f7c675eff00556242cfff8bc446fe407211a689d487252490c005567d1fde390

  • SHA512

    ee4ce887180b7aa9186fc8359c8e6cd7ca490cdab401f16b72f9e1c1664a21536c95a0c59658c36bd674fddc20e0ca96f1e277f54118d7a4fae31fe4c855a82d

  • SSDEEP

    196608:zvFsitNvy4TuJfkPd1+RL+MEp1sjw/2Qw:TF1KW5PTKLw1sjwDw

Malware Config

Targets

    • Target

      91ab8f3f8f9d99ad59f99299e1cf858e.bin

    • Size

      7.3MB

    • MD5

      91ab8f3f8f9d99ad59f99299e1cf858e

    • SHA1

      bd33293c34ec4d98a746268053213a37d483ec47

    • SHA256

      f7c675eff00556242cfff8bc446fe407211a689d487252490c005567d1fde390

    • SHA512

      ee4ce887180b7aa9186fc8359c8e6cd7ca490cdab401f16b72f9e1c1664a21536c95a0c59658c36bd674fddc20e0ca96f1e277f54118d7a4fae31fe4c855a82d

    • SSDEEP

      196608:zvFsitNvy4TuJfkPd1+RL+MEp1sjw/2Qw:TF1KW5PTKLw1sjwDw

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks