Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    357b4c2ed31bd6162b28608d10e696f0N.exe

  • Size

    2.6MB

  • Sample

    240721-aylcfs1hmb

  • MD5

    357b4c2ed31bd6162b28608d10e696f0

  • SHA1

    b95b88176b716e4537ca7f5ba3a50b418e23f899

  • SHA256

    e6902600a9a281182910743371f654a9cf988fe2c6494d7a061ace3a44f859ea

  • SHA512

    0ca8a3e6135bc282cd692ff46060aa9308e6a81990bd9024efacb74a65c6a4402ec490821a329435c28b4350cf19a0fd78b738ca93cb11f6c12bc3d15a10b79f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bS:sxX7QnxrloE5dpUp+b

Malware Config

Targets

    • Target

      357b4c2ed31bd6162b28608d10e696f0N.exe

    • Size

      2.6MB

    • MD5

      357b4c2ed31bd6162b28608d10e696f0

    • SHA1

      b95b88176b716e4537ca7f5ba3a50b418e23f899

    • SHA256

      e6902600a9a281182910743371f654a9cf988fe2c6494d7a061ace3a44f859ea

    • SHA512

      0ca8a3e6135bc282cd692ff46060aa9308e6a81990bd9024efacb74a65c6a4402ec490821a329435c28b4350cf19a0fd78b738ca93cb11f6c12bc3d15a10b79f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bS:sxX7QnxrloE5dpUp+b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks