Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    19d861f4519f308858ddf7eb097bf85b77690c43cf8de3088dc742b44ffb9a84

  • Size

    10.6MB

  • Sample

    240907-v2xj4sxfrf

  • MD5

    97a32a01a45873ebda7a43e6f53957d7

  • SHA1

    34c492d2edbd2be2ee78baa67215216c2cae0f67

  • SHA256

    19d861f4519f308858ddf7eb097bf85b77690c43cf8de3088dc742b44ffb9a84

  • SHA512

    535fc37bd0ecd9eb6756e7c4df56d028f590c1e9d85b4fde9eeb3516a56f1a31005f4f35175322b294b6f9d3422323b036a97c9308d4eb8fa920c0d087630101

  • SSDEEP

    196608:zbkeCT3rE8blQabAxLDoj4878Sx209LOv6Yhc1GShD9IJjc:47E8B7Ux3in78SxOFhc1GID9IK

Malware Config

Targets

    • Target

      19d861f4519f308858ddf7eb097bf85b77690c43cf8de3088dc742b44ffb9a84

    • Size

      10.6MB

    • MD5

      97a32a01a45873ebda7a43e6f53957d7

    • SHA1

      34c492d2edbd2be2ee78baa67215216c2cae0f67

    • SHA256

      19d861f4519f308858ddf7eb097bf85b77690c43cf8de3088dc742b44ffb9a84

    • SHA512

      535fc37bd0ecd9eb6756e7c4df56d028f590c1e9d85b4fde9eeb3516a56f1a31005f4f35175322b294b6f9d3422323b036a97c9308d4eb8fa920c0d087630101

    • SSDEEP

      196608:zbkeCT3rE8blQabAxLDoj4878Sx209LOv6Yhc1GShD9IJjc:47E8B7Ux3in78SxOFhc1GID9IK

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks