Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    21fae9f045ed2e3e2632dfad83a0f290N.exe

  • Size

    944KB

  • Sample

    240719-3qyxsszdjd

  • MD5

    21fae9f045ed2e3e2632dfad83a0f290

  • SHA1

    01693990303168ddee75b39118adbd14f10353b4

  • SHA256

    112ea1f0755a7249d9d6b31da4a914231a965e7b1d8fb0388d0000ffec2351dd

  • SHA512

    01c22bcf9f37d0c6b60c105cb25786b5074c28946cb864e1b71be5be700931012dbb9b5cd0623de3dfbb34d2865e8135141adc74addc5a7dec209e45bd8b2897

  • SSDEEP

    24576:PUhiHOeo8rin3thLR4+mIJz5IcuMlQHJxrDiSi:chiHprothLRisGcnlQHPxi

Score
7/10

Malware Config

Targets

    • Target

      21fae9f045ed2e3e2632dfad83a0f290N.exe

    • Size

      944KB

    • MD5

      21fae9f045ed2e3e2632dfad83a0f290

    • SHA1

      01693990303168ddee75b39118adbd14f10353b4

    • SHA256

      112ea1f0755a7249d9d6b31da4a914231a965e7b1d8fb0388d0000ffec2351dd

    • SHA512

      01c22bcf9f37d0c6b60c105cb25786b5074c28946cb864e1b71be5be700931012dbb9b5cd0623de3dfbb34d2865e8135141adc74addc5a7dec209e45bd8b2897

    • SSDEEP

      24576:PUhiHOeo8rin3thLR4+mIJz5IcuMlQHJxrDiSi:chiHprothLRisGcnlQHPxi

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks