Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1488be23aa5a15bed96482635e79f3ba3dc0091309483335bdb88048643b2365

  • Size

    2.6MB

  • Sample

    240722-xh7bbascja

  • MD5

    1ecc3ef8dc6e4b2d727bca37deecd966

  • SHA1

    8de8318b44891e2cbb7e5dfacc43de85b2c0c6c7

  • SHA256

    1488be23aa5a15bed96482635e79f3ba3dc0091309483335bdb88048643b2365

  • SHA512

    b3beb79c43805e2a35d6cd3365537f7fca9ee5177ec39afb449b9a2c092d0534a51cde1c404172562eeb9d2185038a5c8b349f5d9e454ff3db22f8205ba30e7c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUpWb

Malware Config

Targets

    • Target

      1488be23aa5a15bed96482635e79f3ba3dc0091309483335bdb88048643b2365

    • Size

      2.6MB

    • MD5

      1ecc3ef8dc6e4b2d727bca37deecd966

    • SHA1

      8de8318b44891e2cbb7e5dfacc43de85b2c0c6c7

    • SHA256

      1488be23aa5a15bed96482635e79f3ba3dc0091309483335bdb88048643b2365

    • SHA512

      b3beb79c43805e2a35d6cd3365537f7fca9ee5177ec39afb449b9a2c092d0534a51cde1c404172562eeb9d2185038a5c8b349f5d9e454ff3db22f8205ba30e7c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUpWb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks