Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ea024663c0a6b78243479b0cf02033e8113c0494a5f7dfc0dfac9c0d1dd70a19.exe

  • Size

    896KB

  • Sample

    240825-nnbxxssbrf

  • MD5

    90edbe81aa3f73d3e804c94001b49e86

  • SHA1

    fe52ae1bed2261433abd0f1af2483e60d832555e

  • SHA256

    ea024663c0a6b78243479b0cf02033e8113c0494a5f7dfc0dfac9c0d1dd70a19

  • SHA512

    412195903e15c6acf0c0e0d2638d6b0485b2184d7e6ee098710ecb31d05ae71ad75b9a86b5be7544f694b2e3b6d9123809570ec83b061c6a25494780848438da

  • SSDEEP

    12288:gqDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDgarT7:gqDEvCTbMWu7rQYlBQcBiT6rprG8av7

Malware Config

Targets

    • Target

      ea024663c0a6b78243479b0cf02033e8113c0494a5f7dfc0dfac9c0d1dd70a19.exe

    • Size

      896KB

    • MD5

      90edbe81aa3f73d3e804c94001b49e86

    • SHA1

      fe52ae1bed2261433abd0f1af2483e60d832555e

    • SHA256

      ea024663c0a6b78243479b0cf02033e8113c0494a5f7dfc0dfac9c0d1dd70a19

    • SHA512

      412195903e15c6acf0c0e0d2638d6b0485b2184d7e6ee098710ecb31d05ae71ad75b9a86b5be7544f694b2e3b6d9123809570ec83b061c6a25494780848438da

    • SSDEEP

      12288:gqDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDgarT7:gqDEvCTbMWu7rQYlBQcBiT6rprG8av7

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks