Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4d1a51a7115a786c983aa8bb83071960N.exe

  • Size

    1.2MB

  • Sample

    240715-ay5q4asdra

  • MD5

    4d1a51a7115a786c983aa8bb83071960

  • SHA1

    6bf6ad7901b95ed5d252f07cd1693264da2a4260

  • SHA256

    ebf2a65417b43ed6faa271b571e68f7b2b8f8ca8fb4291e73d95d76c6f0f2dfa

  • SHA512

    4f99332d34d1268cf233846df049e058188e72ae7819653c533eab9c7829d2a69ba228586ddb630bee6efe5a97bc67ad0418788e4360b01a05152dde69ecf559

  • SSDEEP

    24576:oWIHiem3rMw4f43HEbi0fzv4KiYPQ8tc9Aw0/um0MnpIeUJWHocn:VICem3ww4g3EbiWwKFPJSQGm0mE5cn

Malware Config

Targets

    • Target

      4d1a51a7115a786c983aa8bb83071960N.exe

    • Size

      1.2MB

    • MD5

      4d1a51a7115a786c983aa8bb83071960

    • SHA1

      6bf6ad7901b95ed5d252f07cd1693264da2a4260

    • SHA256

      ebf2a65417b43ed6faa271b571e68f7b2b8f8ca8fb4291e73d95d76c6f0f2dfa

    • SHA512

      4f99332d34d1268cf233846df049e058188e72ae7819653c533eab9c7829d2a69ba228586ddb630bee6efe5a97bc67ad0418788e4360b01a05152dde69ecf559

    • SSDEEP

      24576:oWIHiem3rMw4f43HEbi0fzv4KiYPQ8tc9Aw0/um0MnpIeUJWHocn:VICem3ww4g3EbiWwKFPJSQGm0mE5cn

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks