Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    65576d11600ac393a2b85adf316bb23c44d0a1b6e7dd5b1aa76d702d8a9b6a8b.exe

  • Size

    934KB

  • Sample

    240807-b1ehcsxbpm

  • MD5

    89f2a2b6a40d32641a95888e3aabcd03

  • SHA1

    f65a0ff0e403adc9b097d29fc5d60d8c6818f0ea

  • SHA256

    65576d11600ac393a2b85adf316bb23c44d0a1b6e7dd5b1aa76d702d8a9b6a8b

  • SHA512

    37628c276c0fb811be6841ecce62030033e99579e162f6fa69456c17596f75c2c4568a133acd5befcc73274bbb49fc1b1a3fc112b1b1f27a3a525a23a79b93ce

  • SSDEEP

    12288:NzlU13Q1mgtgYLf13Q+9PJ/l8jBiIjfElEbm9/Gi:s36/FqpElEbm9/

Malware Config

Targets

    • Target

      65576d11600ac393a2b85adf316bb23c44d0a1b6e7dd5b1aa76d702d8a9b6a8b.exe

    • Size

      934KB

    • MD5

      89f2a2b6a40d32641a95888e3aabcd03

    • SHA1

      f65a0ff0e403adc9b097d29fc5d60d8c6818f0ea

    • SHA256

      65576d11600ac393a2b85adf316bb23c44d0a1b6e7dd5b1aa76d702d8a9b6a8b

    • SHA512

      37628c276c0fb811be6841ecce62030033e99579e162f6fa69456c17596f75c2c4568a133acd5befcc73274bbb49fc1b1a3fc112b1b1f27a3a525a23a79b93ce

    • SSDEEP

      12288:NzlU13Q1mgtgYLf13Q+9PJ/l8jBiIjfElEbm9/Gi:s36/FqpElEbm9/

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Accesses Microsoft Outlook profiles

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks