Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6dbea94b6ef06e261f45c3adec2be77727693d611c4e2b642bee15a74af8b1b6

  • Size

    231KB

  • Sample

    240725-1xsy1sxelq

  • MD5

    a3d8c4a41ae0c3a179b556f80042eb28

  • SHA1

    648f27af25c6864fd6a7ffbc6b0bde8fc3bb8191

  • SHA256

    6dbea94b6ef06e261f45c3adec2be77727693d611c4e2b642bee15a74af8b1b6

  • SHA512

    6f5560f94d65b1ae9a6286569cc7e090b81925ace14d0ae7a8d21389e6569ea47480c28953dcb112f198408072297e7d2e0c9a19ed73fa475afc993c69c92ad5

  • SSDEEP

    6144:WKq7MrnmM0AI0vgajRI0vXdBv7/PsqkyskssIsVAMjzIGGpsAsdAXAs+s3OT4Ch2:O7MLmNkyFj

Malware Config

Targets

    • Target

      6dbea94b6ef06e261f45c3adec2be77727693d611c4e2b642bee15a74af8b1b6

    • Size

      231KB

    • MD5

      a3d8c4a41ae0c3a179b556f80042eb28

    • SHA1

      648f27af25c6864fd6a7ffbc6b0bde8fc3bb8191

    • SHA256

      6dbea94b6ef06e261f45c3adec2be77727693d611c4e2b642bee15a74af8b1b6

    • SHA512

      6f5560f94d65b1ae9a6286569cc7e090b81925ace14d0ae7a8d21389e6569ea47480c28953dcb112f198408072297e7d2e0c9a19ed73fa475afc993c69c92ad5

    • SSDEEP

      6144:WKq7MrnmM0AI0vgajRI0vXdBv7/PsqkyskssIsVAMjzIGGpsAsdAXAs+s3OT4Ch2:O7MLmNkyFj

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks