Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1dc4be7d64ed0e95933acf70c794d390N.exe

  • Size

    4.1MB

  • Sample

    240712-a5tbmstgkh

  • MD5

    1dc4be7d64ed0e95933acf70c794d390

  • SHA1

    b452bc2bed972cc44c597f19f1ad55f6a3f3ec8f

  • SHA256

    64ddfa4747bad726483b9dd99d16071449fdca3a4947623245d7c707dfdb7a85

  • SHA512

    e9fb88aecb4ac50e1c235265d67cd809653dda8cfd0c818d5a36fcf60287fe2b579e9ffda1dc9443a33e594f947f1a0452a293fcc0d4e0229e06f07ea2890b20

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpsbVz8eLFcz

Malware Config

Targets

    • Target

      1dc4be7d64ed0e95933acf70c794d390N.exe

    • Size

      4.1MB

    • MD5

      1dc4be7d64ed0e95933acf70c794d390

    • SHA1

      b452bc2bed972cc44c597f19f1ad55f6a3f3ec8f

    • SHA256

      64ddfa4747bad726483b9dd99d16071449fdca3a4947623245d7c707dfdb7a85

    • SHA512

      e9fb88aecb4ac50e1c235265d67cd809653dda8cfd0c818d5a36fcf60287fe2b579e9ffda1dc9443a33e594f947f1a0452a293fcc0d4e0229e06f07ea2890b20

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpsbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks