Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    be58d5420d979948dc4645c56c6d7a202df6a9b69c0bf2a3ba4d550aa641c968

  • Size

    3.1MB

  • Sample

    240807-cy7lsssbrc

  • MD5

    86cd062d2f3e66cf9355f2e2f75ba382

  • SHA1

    9a821b521b96ce9a5acc41c4d4070339e23434f6

  • SHA256

    be58d5420d979948dc4645c56c6d7a202df6a9b69c0bf2a3ba4d550aa641c968

  • SHA512

    b56b59dabefef3e17cb278af6ab2070bcbe2521908b39b83411b2965ca144e34f9072af1718c1fc9cb3a869b69af0b7f222788ac44e9414719301159892aa041

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSqz8b6LNXJqI20:sxX7QnxrloE5dpUpAbVz8eLFcz

Malware Config

Targets

    • Target

      be58d5420d979948dc4645c56c6d7a202df6a9b69c0bf2a3ba4d550aa641c968

    • Size

      3.1MB

    • MD5

      86cd062d2f3e66cf9355f2e2f75ba382

    • SHA1

      9a821b521b96ce9a5acc41c4d4070339e23434f6

    • SHA256

      be58d5420d979948dc4645c56c6d7a202df6a9b69c0bf2a3ba4d550aa641c968

    • SHA512

      b56b59dabefef3e17cb278af6ab2070bcbe2521908b39b83411b2965ca144e34f9072af1718c1fc9cb3a869b69af0b7f222788ac44e9414719301159892aa041

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSqz8b6LNXJqI20:sxX7QnxrloE5dpUpAbVz8eLFcz

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks