Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4644ff643e338dba4beaada055ad79a0N.exe

  • Size

    2.6MB

  • Sample

    240820-2bjnwswfjh

  • MD5

    4644ff643e338dba4beaada055ad79a0

  • SHA1

    e9ce05dba27d1a730f6bfb77ca455e0910150d6f

  • SHA256

    502b5a17e5c62cbfb5052e2756235240877cfd7db0003b6764cc0cf785a962ec

  • SHA512

    8602b6c5ca2e84070da59ef12228ea5c6d5be3adca111d47f8502fd6a806895ce3e0676d3cf6d7ad8e593b831c9145d0a40692ed96fec197beda41fcd3eabe87

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bS:sxX7QnxrloE5dpUpbb

Malware Config

Targets

    • Target

      4644ff643e338dba4beaada055ad79a0N.exe

    • Size

      2.6MB

    • MD5

      4644ff643e338dba4beaada055ad79a0

    • SHA1

      e9ce05dba27d1a730f6bfb77ca455e0910150d6f

    • SHA256

      502b5a17e5c62cbfb5052e2756235240877cfd7db0003b6764cc0cf785a962ec

    • SHA512

      8602b6c5ca2e84070da59ef12228ea5c6d5be3adca111d47f8502fd6a806895ce3e0676d3cf6d7ad8e593b831c9145d0a40692ed96fec197beda41fcd3eabe87

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bS:sxX7QnxrloE5dpUpbb

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.