Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    goOWAChecker.zip

  • Size

    6.6MB

  • Sample

    240724-kh522axaqr

  • MD5

    6134433ac6868535d2416daf3367c6ca

  • SHA1

    318ee609f1f078d0769d1e5e0beafbb472736359

  • SHA256

    70640544ab74078bb8af8d0312f5727276a4159028db58ad561866ee9efc20d4

  • SHA512

    9e6c1fddffe9c8aacffe44db1f9ceefd3a56482215c237e0953ce0f568bb5b658a6867b092b2314460817343792605517b0e2be9cd142d750f328d9d44ae50cd

  • SSDEEP

    196608:Znf69UhWdGg2jW9lG2w9PGDsDym5gb1aQQj3kP99Y4jn5D:l69wq2clnoCsB5gbnDe4dD

Malware Config

Targets

    • Target

      main.exe

    • Size

      12.3MB

    • MD5

      1ee583b7d83aa104a7411e46faced96b

    • SHA1

      a78f2573720f40bae5c945058b27db377c0759b4

    • SHA256

      08f841f352a4148ff5fe2870f44aa8cdfe59e7e80ba647bf41e4e5451953c528

    • SHA512

      9a8814b44aebde42590621a1b20a335f7e6af534128677699c5d383ff8467c26c09c2bf2ff802252655acd8596912c2825bb093b618cde8828a6054c6c0e601e

    • SSDEEP

      196608:sJZirGR1o8cp+V/8oLQ7qMiogXB8N1ANWhXJ:OZiM1o8tVDogB8Ne8XJ

    • Uses browser remote debugging

      Can be used control the browser and steal sensitive information such as credentials and session cookies.

MITRE ATT&CK Enterprise v15

Tasks