Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7ecb61e348178502a91baa00da851180N.exe

  • Size

    1.2MB

  • Sample

    240817-p1slwawejc

  • MD5

    7ecb61e348178502a91baa00da851180

  • SHA1

    c3993a394e2d581dc5b6f3638e4312590ee4f268

  • SHA256

    0278fef86b92f909d1f4f97895a4b7378ea5d3b9791242e85ac6172903f388bd

  • SHA512

    52d0c89f8469272c5d33b0fbfdce0875b50c040fde4fe4ca1b7e662cf26f5b85df96fd788e387070de887bbdb821256bd81809ab0a90841be299ea26fc217258

  • SSDEEP

    12288:AurYlc+pFByStv9JRa//inz86NRo1qiRlUWC4kXzVC3:Au2c+pFB5z+//ufNRoZW

Malware Config

Targets

    • Target

      7ecb61e348178502a91baa00da851180N.exe

    • Size

      1.2MB

    • MD5

      7ecb61e348178502a91baa00da851180

    • SHA1

      c3993a394e2d581dc5b6f3638e4312590ee4f268

    • SHA256

      0278fef86b92f909d1f4f97895a4b7378ea5d3b9791242e85ac6172903f388bd

    • SHA512

      52d0c89f8469272c5d33b0fbfdce0875b50c040fde4fe4ca1b7e662cf26f5b85df96fd788e387070de887bbdb821256bd81809ab0a90841be299ea26fc217258

    • SSDEEP

      12288:AurYlc+pFByStv9JRa//inz86NRo1qiRlUWC4kXzVC3:Au2c+pFB5z+//ufNRoZW

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks