Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab3d97e81ba84836d7a764a1f9cee210N.exe

  • Size

    1.9MB

  • Sample

    240721-mahmwazgmn

  • MD5

    ab3d97e81ba84836d7a764a1f9cee210

  • SHA1

    3b4926a092731a4db30d664e93fba3ab26e388a1

  • SHA256

    18f78a9b4f8bd635345cea1e9737ad916903a1710dd901fafa117e19b3f59b95

  • SHA512

    b674cc46fa2f04c55999cde7661a537ee99896c6fd51ee3d339b2e7c37c93bb26d9ec5616e843886543b7735deeddf6eb757624681a97c62827aadb9beb777d6

  • SSDEEP

    24576:86oSB4FgwHOTMyLPC9kbDrr6nwfXKBbpUzv9RTU1Xye4T+rs8Cq7eeJDTLIcdg4W:5OFgPjC2n6wPMKaXy1EX/Icl+0ECT260

Malware Config

Targets

    • Target

      ab3d97e81ba84836d7a764a1f9cee210N.exe

    • Size

      1.9MB

    • MD5

      ab3d97e81ba84836d7a764a1f9cee210

    • SHA1

      3b4926a092731a4db30d664e93fba3ab26e388a1

    • SHA256

      18f78a9b4f8bd635345cea1e9737ad916903a1710dd901fafa117e19b3f59b95

    • SHA512

      b674cc46fa2f04c55999cde7661a537ee99896c6fd51ee3d339b2e7c37c93bb26d9ec5616e843886543b7735deeddf6eb757624681a97c62827aadb9beb777d6

    • SSDEEP

      24576:86oSB4FgwHOTMyLPC9kbDrr6nwfXKBbpUzv9RTU1Xye4T+rs8Cq7eeJDTLIcdg4W:5OFgPjC2n6wPMKaXy1EX/Icl+0ECT260

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks