Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    11be78b744d48be7f5c1438c93fa28fc0b66ddc5fad50d091149a951f3002c49.exe

  • Size

    4.1MB

  • Sample

    240820-p8g54sxank

  • MD5

    87842c44385a9c22e2d47b4fe85566dc

  • SHA1

    10e5c0d68e885843ce2ba5ca1cf44b47668d8e85

  • SHA256

    11be78b744d48be7f5c1438c93fa28fc0b66ddc5fad50d091149a951f3002c49

  • SHA512

    6e73439c4d93630d098f36139888aecb8f04666739cad81d8493115caf7876c21f8180d92fdf95b101802a4ca822679ee0ba16866e695c9a53b968d636c680de

  • SSDEEP

    49152:RYb8pEkg/hv5VZtZ81CxBss47oBTQfjTajnoFzJjss+exivznT7b5dRjy8v1jlxh:RQQfgJ7lxSEOjhFtj5ALvFzyAjXh

Malware Config

Targets

    • Target

      11be78b744d48be7f5c1438c93fa28fc0b66ddc5fad50d091149a951f3002c49.exe

    • Size

      4.1MB

    • MD5

      87842c44385a9c22e2d47b4fe85566dc

    • SHA1

      10e5c0d68e885843ce2ba5ca1cf44b47668d8e85

    • SHA256

      11be78b744d48be7f5c1438c93fa28fc0b66ddc5fad50d091149a951f3002c49

    • SHA512

      6e73439c4d93630d098f36139888aecb8f04666739cad81d8493115caf7876c21f8180d92fdf95b101802a4ca822679ee0ba16866e695c9a53b968d636c680de

    • SSDEEP

      49152:RYb8pEkg/hv5VZtZ81CxBss47oBTQfjTajnoFzJjss+exivznT7b5dRjy8v1jlxh:RQQfgJ7lxSEOjhFtj5ALvFzyAjXh

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks