Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7245470f4d3a2f7498c30dab496c2def9a27cd048ba8eaadc9289ff36cbc49ea

  • Size

    1.1MB

  • Sample

    240828-3aqw9atdkl

  • MD5

    83504e50ddd2ff34e107432cbecb4d9b

  • SHA1

    b0a77b156c4ed179d635510f54464e038a08b12a

  • SHA256

    7245470f4d3a2f7498c30dab496c2def9a27cd048ba8eaadc9289ff36cbc49ea

  • SHA512

    4d3c3d1941a6430ae589d3082ea2c4bc5e2f07991da0f41066dc8b998e3a0a1c2a6985e9d6a49ba6c5782adda5b386a6630e7b268393b661430c5d15f39ee7a4

  • SSDEEP

    24576:2WWM1aRQQLtXoUUVPOjOhKh6oSc9/FfC1BwEijI7jHkaC:zWM1oQAXx2OjOw6/O/KBsMHM

Malware Config

Targets

    • Target

      7245470f4d3a2f7498c30dab496c2def9a27cd048ba8eaadc9289ff36cbc49ea

    • Size

      1.1MB

    • MD5

      83504e50ddd2ff34e107432cbecb4d9b

    • SHA1

      b0a77b156c4ed179d635510f54464e038a08b12a

    • SHA256

      7245470f4d3a2f7498c30dab496c2def9a27cd048ba8eaadc9289ff36cbc49ea

    • SHA512

      4d3c3d1941a6430ae589d3082ea2c4bc5e2f07991da0f41066dc8b998e3a0a1c2a6985e9d6a49ba6c5782adda5b386a6630e7b268393b661430c5d15f39ee7a4

    • SSDEEP

      24576:2WWM1aRQQLtXoUUVPOjOhKh6oSc9/FfC1BwEijI7jHkaC:zWM1oQAXx2OjOw6/O/KBsMHM

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks