Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    256260d495d11a8384c745c68b0a4e8b3a003b4de6751a66a6bf9ec590ba854d

  • Size

    89KB

  • Sample

    240819-z2e3aazeln

  • MD5

    6cd6f581096153b6f9e38e75262e2681

  • SHA1

    a5384c118bb1ac6774694df86b53f7b09f10ce20

  • SHA256

    256260d495d11a8384c745c68b0a4e8b3a003b4de6751a66a6bf9ec590ba854d

  • SHA512

    4a65b06be0ccc06ac6dcd2ae1beb24adda77e45e1ee9cdac9ba6fadfae4345597b2dfd0397b311521b01de52623eb714b6aaf54e38feb646459337a2e226c5ba

  • SSDEEP

    1536:L7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfcxOKeO+:Hq6+ouCpk2mpcWJ0r+QNTBfc4

Malware Config

Targets

    • Target

      256260d495d11a8384c745c68b0a4e8b3a003b4de6751a66a6bf9ec590ba854d

    • Size

      89KB

    • MD5

      6cd6f581096153b6f9e38e75262e2681

    • SHA1

      a5384c118bb1ac6774694df86b53f7b09f10ce20

    • SHA256

      256260d495d11a8384c745c68b0a4e8b3a003b4de6751a66a6bf9ec590ba854d

    • SHA512

      4a65b06be0ccc06ac6dcd2ae1beb24adda77e45e1ee9cdac9ba6fadfae4345597b2dfd0397b311521b01de52623eb714b6aaf54e38feb646459337a2e226c5ba

    • SSDEEP

      1536:L7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfcxOKeO+:Hq6+ouCpk2mpcWJ0r+QNTBfc4

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks