Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c304ed9a2becb1217ab24c1e8cda2208bedb0a6409e4c8dadc0a46324da5ef7b

  • Size

    3.1MB

  • Sample

    240817-ztpazswgra

  • MD5

    c55238868b04a02b36f0398839bcf62b

  • SHA1

    2d4168ea5757f2763a111871c35fb5b7e2078cee

  • SHA256

    c304ed9a2becb1217ab24c1e8cda2208bedb0a6409e4c8dadc0a46324da5ef7b

  • SHA512

    fcf88bd17f796c0633003fc4f4437f5a46e9f5cf2f93fd7157faa40c1433bf82d13f70d27420791e57cfe373dfa15b44a93fc5290a08a72e4b4c62279feb5918

  • SSDEEP

    49152:zVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:ZA7VyRPS7MLq4ykF09+riyXWz6Ha

Malware Config

Targets

    • Target

      c304ed9a2becb1217ab24c1e8cda2208bedb0a6409e4c8dadc0a46324da5ef7b

    • Size

      3.1MB

    • MD5

      c55238868b04a02b36f0398839bcf62b

    • SHA1

      2d4168ea5757f2763a111871c35fb5b7e2078cee

    • SHA256

      c304ed9a2becb1217ab24c1e8cda2208bedb0a6409e4c8dadc0a46324da5ef7b

    • SHA512

      fcf88bd17f796c0633003fc4f4437f5a46e9f5cf2f93fd7157faa40c1433bf82d13f70d27420791e57cfe373dfa15b44a93fc5290a08a72e4b4c62279feb5918

    • SSDEEP

      49152:zVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:ZA7VyRPS7MLq4ykF09+riyXWz6Ha

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks