Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4570eff0d1d92560081b7314ab36a8103e975a5b09b671c03045711fe71b7e92

  • Size

    2.6MB

  • Sample

    240824-1vecvatemn

  • MD5

    4f9e62b641b82463c2d09941131abb83

  • SHA1

    d7c1a9c10178bbdededb32e5d92cebdc3a5e6acc

  • SHA256

    4570eff0d1d92560081b7314ab36a8103e975a5b09b671c03045711fe71b7e92

  • SHA512

    e2468c8a336003e7121545196a144096190c69f39fa15af0abd62a592666db1522522053f9401e4657e4132d302aab365938ef7024148606f91cc5e06d76689a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUpWb

Malware Config

Targets

    • Target

      4570eff0d1d92560081b7314ab36a8103e975a5b09b671c03045711fe71b7e92

    • Size

      2.6MB

    • MD5

      4f9e62b641b82463c2d09941131abb83

    • SHA1

      d7c1a9c10178bbdededb32e5d92cebdc3a5e6acc

    • SHA256

      4570eff0d1d92560081b7314ab36a8103e975a5b09b671c03045711fe71b7e92

    • SHA512

      e2468c8a336003e7121545196a144096190c69f39fa15af0abd62a592666db1522522053f9401e4657e4132d302aab365938ef7024148606f91cc5e06d76689a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUpWb

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks