Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d10a4901947551e71a2290f145fb741a.bin

  • Size

    7.3MB

  • Sample

    240703-dw24zavelf

  • MD5

    d10a4901947551e71a2290f145fb741a

  • SHA1

    73ff0325e0bcdccc6e03cf51c1d1b21dd3428805

  • SHA256

    089087cd2e8a9489b0f5fd5514c7f416d4cdad92d0839d01c89fed8e96f68aec

  • SHA512

    6e295f32d0dfc8a1ab0447834b1d9ab23b798fb86307ae9424dc3069688965a4153e8be54c2878065caa1dfb10f18162462c3d10096031760c5cee2d9f6619f9

  • SSDEEP

    196608:Ip59FgrTtu/6+zhYTxGP+4KA40J/5tPh0sdOdWNK:IpNgM9fF5R5tPhkP

Malware Config

Targets

    • Target

      d10a4901947551e71a2290f145fb741a.bin

    • Size

      7.3MB

    • MD5

      d10a4901947551e71a2290f145fb741a

    • SHA1

      73ff0325e0bcdccc6e03cf51c1d1b21dd3428805

    • SHA256

      089087cd2e8a9489b0f5fd5514c7f416d4cdad92d0839d01c89fed8e96f68aec

    • SHA512

      6e295f32d0dfc8a1ab0447834b1d9ab23b798fb86307ae9424dc3069688965a4153e8be54c2878065caa1dfb10f18162462c3d10096031760c5cee2d9f6619f9

    • SSDEEP

      196608:Ip59FgrTtu/6+zhYTxGP+4KA40J/5tPh0sdOdWNK:IpNgM9fF5R5tPhkP

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks