Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b291a76fac914678daafc9d0a6f8e8cc.zip

  • Size

    236KB

  • Sample

    240902-3qmvja1anp

  • MD5

    d6dd6260fed5445b4c57a0cb91ffc2eb

  • SHA1

    ccec9ed167ee3cec39b5ea8fe2b8030c385695d4

  • SHA256

    613db3afce99be098da6da81a16abbd281f6cac7a4f93960e6f9f5eb8553f1ff

  • SHA512

    881eef6bf9d992c12c3ce6fcfb57ec7929af9788e482087a7d7cda2ccc79161ffbacbd26cf9f47891d1403087b8de983ed91c37b1faf13731384094542c8a687

  • SSDEEP

    6144:TM6Kf9s8WbW3rrfSz2ajt/tu1U8hw6+2M2fhehU4fAGknF2h+O:9oGAuzxtUw6XJj4fUFe+O

Malware Config

Targets

    • Target

      e45f1f223c96890edce351a786cf6c06372a19644c66dae313e9f6d3ede09b28

    • Size

      239KB

    • MD5

      b291a76fac914678daafc9d0a6f8e8cc

    • SHA1

      8a7b74496983239c1a28ce9d6f2d382ec8b55c55

    • SHA256

      e45f1f223c96890edce351a786cf6c06372a19644c66dae313e9f6d3ede09b28

    • SHA512

      02ce74d892f280beabdb32e7be6df7763e0953085a35d87c725df6a074e3c8830bbd2f7a0b07aede895580df941717b307e775dc484f4472dc81832d2b59b8e1

    • SSDEEP

      6144:Sjepbtc3rWVM9YdgxRtMSsHSFGLQ6Y5xKu+1+hUUEi3:SjephYqVM/xeS7xKuFhlEW

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks