Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ed9c02254f8cf78e749d9f4c6e927618c05036b054f63ebbdc14ec6d72c6c2ac

  • Size

    3.1MB

  • Sample

    240818-2ntdvsyfkg

  • MD5

    7496090a7ad6a92af3f249872c74b804

  • SHA1

    2be9e72473ee6c5b16b8736274c84d242ad398c6

  • SHA256

    ed9c02254f8cf78e749d9f4c6e927618c05036b054f63ebbdc14ec6d72c6c2ac

  • SHA512

    60e4ada50120c205c0f69f9b612e8b7d9c00c64774325faed080617595fc3a192937b490a8051ed0481f20c57901b1a7ecaddadc329ab05413cadd0b3d94dbe4

  • SSDEEP

    49152:HVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:1A7VyRPS7MLq4ykF09+riyXWz6Ha

Malware Config

Targets

    • Target

      ed9c02254f8cf78e749d9f4c6e927618c05036b054f63ebbdc14ec6d72c6c2ac

    • Size

      3.1MB

    • MD5

      7496090a7ad6a92af3f249872c74b804

    • SHA1

      2be9e72473ee6c5b16b8736274c84d242ad398c6

    • SHA256

      ed9c02254f8cf78e749d9f4c6e927618c05036b054f63ebbdc14ec6d72c6c2ac

    • SHA512

      60e4ada50120c205c0f69f9b612e8b7d9c00c64774325faed080617595fc3a192937b490a8051ed0481f20c57901b1a7ecaddadc329ab05413cadd0b3d94dbe4

    • SSDEEP

      49152:HVAbw8VyRPkVwSdyKE6a8anqApzEVZnk8m0Uf89+zvi1QXsy4TpM+DWUl+n1aso:1A7VyRPS7MLq4ykF09+riyXWz6Ha

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks