Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a20ca8c0641b7da0aea16281c59eb0d0N.exe
-
Size
3.2MB
-
Sample
240818-d3rltashph
-
MD5
a20ca8c0641b7da0aea16281c59eb0d0
-
SHA1
34701817287c0550c0d85d594e393556ac9a4df9
-
SHA256
5bbef01874be4ea423f9f16625f2547780c63ab22f8ff173063fe39c3b1741e9
-
SHA512
97383f2aa9cffd65f42142c2a2fe85bd020f32eb98c33e20a3e79a838ee374e21564d2420ea3388f6962ade4ff35b479b02fb7fcea0031b8f2c8b75d87292f17
-
SSDEEP
49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpRbVz8eLFcz
Malware Config
Targets
-
-
Target
a20ca8c0641b7da0aea16281c59eb0d0N.exe
-
Size
3.2MB
-
MD5
a20ca8c0641b7da0aea16281c59eb0d0
-
SHA1
34701817287c0550c0d85d594e393556ac9a4df9
-
SHA256
5bbef01874be4ea423f9f16625f2547780c63ab22f8ff173063fe39c3b1741e9
-
SHA512
97383f2aa9cffd65f42142c2a2fe85bd020f32eb98c33e20a3e79a838ee374e21564d2420ea3388f6962ade4ff35b479b02fb7fcea0031b8f2c8b75d87292f17
-
SSDEEP
49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpRbVz8eLFcz
Score9/10-
Credentials from Password Stores: Credentials from Web Browsers
Malicious Access or copy of Web Browser Credential store.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-