Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    68f362cefe016468907538e11e07fd0a00dc1de29820cbfd14077e6a286aa059

  • Size

    711KB

  • Sample

    240722-2f8htasfmq

  • MD5

    827710d6a84b108464681064abe2a70e

  • SHA1

    d8d84633d01a9def2d03e24a8600ce54203f378f

  • SHA256

    68f362cefe016468907538e11e07fd0a00dc1de29820cbfd14077e6a286aa059

  • SHA512

    0d0cadb7cd76215616e30e17a4114ea81b45b707e16b5e8ba96c48d8aa4570b18d155da90c4ac3208722e9c60e5a50b03f4bb37f0568165f3531efe7c7acffdb

  • SSDEEP

    12288:oGHasii9Ba6Jq8G6Y3r1JyCpop98Iri0wPCwDO0HDXaJ1WKITtsyRDJwz7buv:86atd7CCS9vR5sAIT+QAHuv

Malware Config

Targets

    • Target

      68f362cefe016468907538e11e07fd0a00dc1de29820cbfd14077e6a286aa059

    • Size

      711KB

    • MD5

      827710d6a84b108464681064abe2a70e

    • SHA1

      d8d84633d01a9def2d03e24a8600ce54203f378f

    • SHA256

      68f362cefe016468907538e11e07fd0a00dc1de29820cbfd14077e6a286aa059

    • SHA512

      0d0cadb7cd76215616e30e17a4114ea81b45b707e16b5e8ba96c48d8aa4570b18d155da90c4ac3208722e9c60e5a50b03f4bb37f0568165f3531efe7c7acffdb

    • SSDEEP

      12288:oGHasii9Ba6Jq8G6Y3r1JyCpop98Iri0wPCwDO0HDXaJ1WKITtsyRDJwz7buv:86atd7CCS9vR5sAIT+QAHuv

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks