Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ed202003f29dfb887f4c660aef36986d60d68a6a2767fec985ef403d42a39c0b

  • Size

    3.1MB

  • Sample

    240809-bj4e6atfpj

  • MD5

    3d48d1bb4def8ef1ea01db5847139791

  • SHA1

    c8e115bccf1b040e50e3281586223eced0301fb7

  • SHA256

    ed202003f29dfb887f4c660aef36986d60d68a6a2767fec985ef403d42a39c0b

  • SHA512

    d23f9bf7b01b55a56a3de5a8785f3d7dff2a7d122799d6aa8f4abdfd7f3a26ce7493473415f2c13297fe394b72391d76d0078ff93fae20ddda512b40f8601079

  • SSDEEP

    49152:JNEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aS:nEP1y3+0hgh6u/ZcTCP8BzONaS

Malware Config

Targets

    • Target

      ed202003f29dfb887f4c660aef36986d60d68a6a2767fec985ef403d42a39c0b

    • Size

      3.1MB

    • MD5

      3d48d1bb4def8ef1ea01db5847139791

    • SHA1

      c8e115bccf1b040e50e3281586223eced0301fb7

    • SHA256

      ed202003f29dfb887f4c660aef36986d60d68a6a2767fec985ef403d42a39c0b

    • SHA512

      d23f9bf7b01b55a56a3de5a8785f3d7dff2a7d122799d6aa8f4abdfd7f3a26ce7493473415f2c13297fe394b72391d76d0078ff93fae20ddda512b40f8601079

    • SSDEEP

      49152:JNEyYYC1hqiJckG38dBFOhg5/6qF3rjb/h4CNcTCP8xphzSNtOSe+aS:nEP1y3+0hgh6u/ZcTCP8BzONaS

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks