Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fe61d7d81ade12e84852fe631d4d4ea5b653d1e085bfdb7b0b3dcbe54a3bf3c1

  • Size

    17KB

  • Sample

    240706-fxk8yswerm

  • MD5

    c73226825fd1453f99b93d2d38bb0a63

  • SHA1

    88436b1a4b0deafe041b795d07efcce21752f6bd

  • SHA256

    fe61d7d81ade12e84852fe631d4d4ea5b653d1e085bfdb7b0b3dcbe54a3bf3c1

  • SHA512

    d584c724c06492d5b914e65c5b033c28bfade0d9d1df7f03000f4e46704f047ad5ac19c574e999b78200e212f365ab9cd1ff60de343d47abe75537d9765a2ddb

  • SSDEEP

    384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/SgLU:IMAQ+BzWPEwnE+KHM2/SF

Malware Config

Targets

    • Target

      fe61d7d81ade12e84852fe631d4d4ea5b653d1e085bfdb7b0b3dcbe54a3bf3c1

    • Size

      17KB

    • MD5

      c73226825fd1453f99b93d2d38bb0a63

    • SHA1

      88436b1a4b0deafe041b795d07efcce21752f6bd

    • SHA256

      fe61d7d81ade12e84852fe631d4d4ea5b653d1e085bfdb7b0b3dcbe54a3bf3c1

    • SHA512

      d584c724c06492d5b914e65c5b033c28bfade0d9d1df7f03000f4e46704f047ad5ac19c574e999b78200e212f365ab9cd1ff60de343d47abe75537d9765a2ddb

    • SSDEEP

      384:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/SgLU:IMAQ+BzWPEwnE+KHM2/SF

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks