Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    OperaSetup.exe

  • Size

    2.0MB

  • Sample

    240802-vbge7swgmh

  • MD5

    0ed8621a85ab4dc47e59aef9536a1d44

  • SHA1

    f980494ebb1cc3b726155073dfbb7dc7a6adade5

  • SHA256

    dbc9a0c0dd324e907212e11a01bf6387eb5221298f9fcacb20c7dc89fe9f7a12

  • SHA512

    ca6f4d6e6e71c448a51b2ee7d4917d9f37c6ed5d3e56d36487b2526f5b0d3b19d502999b5ff755f0a85ce5af297f82675a823c93255c61121758c1daa3d362da

  • SSDEEP

    49152:4VAbwCTx2h3bfEF337LYkDNqxyAnEnNZeZpWV41ktqwaqawPoSSXPbOvl:0ARTsrfEd379NwyAENZe68kKKoRqvl

Malware Config

Targets

    • Target

      OperaSetup.exe

    • Size

      2.0MB

    • MD5

      0ed8621a85ab4dc47e59aef9536a1d44

    • SHA1

      f980494ebb1cc3b726155073dfbb7dc7a6adade5

    • SHA256

      dbc9a0c0dd324e907212e11a01bf6387eb5221298f9fcacb20c7dc89fe9f7a12

    • SHA512

      ca6f4d6e6e71c448a51b2ee7d4917d9f37c6ed5d3e56d36487b2526f5b0d3b19d502999b5ff755f0a85ce5af297f82675a823c93255c61121758c1daa3d362da

    • SSDEEP

      49152:4VAbwCTx2h3bfEF337LYkDNqxyAnEnNZeZpWV41ktqwaqawPoSSXPbOvl:0ARTsrfEd379NwyAENZe68kKKoRqvl

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks