Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1d49b2126ce3b6c5f24fbc9df8ad4e914402df2718032ca7ccf81299812176c6

  • Size

    2.0MB

  • Sample

    240809-eac4dszdlb

  • MD5

    ed5adc2d45848927f3f313d8a65135f3

  • SHA1

    e44ca164766d64af6786cab842e974136afe0fe6

  • SHA256

    1d49b2126ce3b6c5f24fbc9df8ad4e914402df2718032ca7ccf81299812176c6

  • SHA512

    5e9f5a58aaa145abf6f3e8afe0e5c7d92f979454bf78f4baff0d30d4d8e257446d4e413336e9c1ff9be3976056a74dd4f7a2a1250161da415ced16613ecf3a9e

  • SSDEEP

    49152:SVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:WApQx5+Mc27g9tfoMv

Malware Config

Targets

    • Target

      1d49b2126ce3b6c5f24fbc9df8ad4e914402df2718032ca7ccf81299812176c6

    • Size

      2.0MB

    • MD5

      ed5adc2d45848927f3f313d8a65135f3

    • SHA1

      e44ca164766d64af6786cab842e974136afe0fe6

    • SHA256

      1d49b2126ce3b6c5f24fbc9df8ad4e914402df2718032ca7ccf81299812176c6

    • SHA512

      5e9f5a58aaa145abf6f3e8afe0e5c7d92f979454bf78f4baff0d30d4d8e257446d4e413336e9c1ff9be3976056a74dd4f7a2a1250161da415ced16613ecf3a9e

    • SSDEEP

      49152:SVAbwuGwKOco09gsJcxlV8fTguPOAItUIrhO5Ov:WApQx5+Mc27g9tfoMv

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks