Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2a97cf5a29c1dae93040842ee19a64b0N.exe

  • Size

    2.6MB

  • Sample

    240719-ajhm1stekp

  • MD5

    2a97cf5a29c1dae93040842ee19a64b0

  • SHA1

    4c42666c4414bbdbde41e258f1c7351f64f22753

  • SHA256

    9765466d847c00f0df13030fa48c264d6b9c8ea407f4edaffd10509379ca15ba

  • SHA512

    e7c74b2729a54a5c8e31dbd1c8999edaf22749b614e02e9c6b89d02426455afeac309005cb1f66a597e472d90a8e5b69065beaacbf720712f3ff40404ffda68a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bS:sxX7QnxrloE5dpUpRb

Malware Config

Targets

    • Target

      2a97cf5a29c1dae93040842ee19a64b0N.exe

    • Size

      2.6MB

    • MD5

      2a97cf5a29c1dae93040842ee19a64b0

    • SHA1

      4c42666c4414bbdbde41e258f1c7351f64f22753

    • SHA256

      9765466d847c00f0df13030fa48c264d6b9c8ea407f4edaffd10509379ca15ba

    • SHA512

      e7c74b2729a54a5c8e31dbd1c8999edaf22749b614e02e9c6b89d02426455afeac309005cb1f66a597e472d90a8e5b69065beaacbf720712f3ff40404ffda68a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bS:sxX7QnxrloE5dpUpRb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks