Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9fc9ec6416a4c9cae32fbf7cc96c9572d04e9a8af085f2e13e54bb459b74221e

  • Size

    3.1MB

  • Sample

    240817-13qqvazekh

  • MD5

    2a698fe7d134f64279ba45bff2b237b1

  • SHA1

    fa574f7b19d52083a79f8bd2605b4f6173eb5593

  • SHA256

    9fc9ec6416a4c9cae32fbf7cc96c9572d04e9a8af085f2e13e54bb459b74221e

  • SHA512

    33ee0160881509561a9c4313cbb207c253228e83a6d2100d980ea29283c20dacf2a067b657af77b0e59cdee2af413dfaf7a08a203762c74c0052c3aab7e04920

  • SSDEEP

    49152:QVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:8A7VyRPS7MLq4ykF09+riyXWz6Ha

Malware Config

Targets

    • Target

      9fc9ec6416a4c9cae32fbf7cc96c9572d04e9a8af085f2e13e54bb459b74221e

    • Size

      3.1MB

    • MD5

      2a698fe7d134f64279ba45bff2b237b1

    • SHA1

      fa574f7b19d52083a79f8bd2605b4f6173eb5593

    • SHA256

      9fc9ec6416a4c9cae32fbf7cc96c9572d04e9a8af085f2e13e54bb459b74221e

    • SHA512

      33ee0160881509561a9c4313cbb207c253228e83a6d2100d980ea29283c20dacf2a067b657af77b0e59cdee2af413dfaf7a08a203762c74c0052c3aab7e04920

    • SSDEEP

      49152:QVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:8A7VyRPS7MLq4ykF09+riyXWz6Ha

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks