Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    12ad68c32f9a52205f86d844c5cd0e40.bin

  • Size

    3.2MB

  • Sample

    240719-bgv11aydkc

  • MD5

    12ad68c32f9a52205f86d844c5cd0e40

  • SHA1

    22873f5c4b7150d635d90b51ba9447b9ecde26a2

  • SHA256

    5573c4947536bb470112bf7819a196499d33e819ab4e0154eae70b75daf14790

  • SHA512

    c73d7cf86638c23a8255662f062445207f2b2432ee5ce02dda8d6e4956d40c1bc90754b485ec90277d1ca9a7fd59497e157a7305578371aac5c01ad59fa0313c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp/bVz8eLFcz

Malware Config

Targets

    • Target

      12ad68c32f9a52205f86d844c5cd0e40.bin

    • Size

      3.2MB

    • MD5

      12ad68c32f9a52205f86d844c5cd0e40

    • SHA1

      22873f5c4b7150d635d90b51ba9447b9ecde26a2

    • SHA256

      5573c4947536bb470112bf7819a196499d33e819ab4e0154eae70b75daf14790

    • SHA512

      c73d7cf86638c23a8255662f062445207f2b2432ee5ce02dda8d6e4956d40c1bc90754b485ec90277d1ca9a7fd59497e157a7305578371aac5c01ad59fa0313c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp/bVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks