Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    383fd45963bc97b729b1cbc4bb666410bf8310c52d35ea6e48951dd875d53910

  • Size

    89KB

  • Sample

    240818-zeh6eswdmm

  • MD5

    34834999c6393aa0398abfde8bf69db9

  • SHA1

    46fdbdeb1c3bfc74aff2fbbfc8a045c87b80fe82

  • SHA256

    383fd45963bc97b729b1cbc4bb666410bf8310c52d35ea6e48951dd875d53910

  • SHA512

    9fff1de58521d2d9516b855c77297d922855580c3c1938a6610bc49bcffbda5670d62195835eabe79e227e494572a15ac8b7b7b50ec07adcb93387c8c98b73a5

  • SSDEEP

    1536:L7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfQxHhCJO+:Hq6+ouCpk2mpcWJ0r+QNTBfQlIP

Malware Config

Targets

    • Target

      383fd45963bc97b729b1cbc4bb666410bf8310c52d35ea6e48951dd875d53910

    • Size

      89KB

    • MD5

      34834999c6393aa0398abfde8bf69db9

    • SHA1

      46fdbdeb1c3bfc74aff2fbbfc8a045c87b80fe82

    • SHA256

      383fd45963bc97b729b1cbc4bb666410bf8310c52d35ea6e48951dd875d53910

    • SHA512

      9fff1de58521d2d9516b855c77297d922855580c3c1938a6610bc49bcffbda5670d62195835eabe79e227e494572a15ac8b7b7b50ec07adcb93387c8c98b73a5

    • SSDEEP

      1536:L7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfQxHhCJO+:Hq6+ouCpk2mpcWJ0r+QNTBfQlIP

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks