Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbkhhM1FsY2dyTWp5ZVJ6UnlaSkp5Yk9fcVR1d3xBQ3Jtc0ttU05EQkdsLUZBXzFVMEMxd21aenktV2dZdnR5bDM4eEJWS3NXQ0dPaUFLaDVTbjRKSGY1Y3ZlTnFzeFFWZS1SVXRDMy1KV3A0LVFlWEtycUdZRWJ5MFp1M2hmRzZobU16VENjQUo2TEhlYjF2RE1sUQ&q=https%3A%2F%2Fanonfile.com%2Fq4SaL3renc%2FSLAYER_Leecher_v0.6_exe&v=bs7hXjTYcyA

  • Sample

    240829-dx1mja1fpb

Malware Config

Targets

    • Target

      https://www.youtube.com/redirect?event=video_description&redir_token=QUFFLUhqbkhhM1FsY2dyTWp5ZVJ6UnlaSkp5Yk9fcVR1d3xBQ3Jtc0ttU05EQkdsLUZBXzFVMEMxd21aenktV2dZdnR5bDM4eEJWS3NXQ0dPaUFLaDVTbjRKSGY1Y3ZlTnFzeFFWZS1SVXRDMy1KV3A0LVFlWEtycUdZRWJ5MFp1M2hmRzZobU16VENjQUo2TEhlYjF2RE1sUQ&q=https%3A%2F%2Fanonfile.com%2Fq4SaL3renc%2FSLAYER_Leecher_v0.6_exe&v=bs7hXjTYcyA

    • Downloads MZ/PE file

    • Legitimate hosting services abused for malware hosting/C2

    • Mark of the Web detected: This indicates that the page was originally saved or cloned.

MITRE ATT&CK Enterprise v15

Tasks