Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    038b53fd1910eb848172c12c50d17bc052330e8cfa8f910e1e7a309c8956c577

  • Size

    428KB

  • Sample

    240911-wtwhhsvekn

  • MD5

    488109113faa261fcad6852978d861cd

  • SHA1

    0fbe869a1f7807df979d312345b26d79216397e7

  • SHA256

    038b53fd1910eb848172c12c50d17bc052330e8cfa8f910e1e7a309c8956c577

  • SHA512

    cf2b5c5228973c588ed2cad9e82ac6f3a614901ab6e7792dd1d945923ef6a5d014075e7e48326a81e115d3ffc4344640db0b3ffb224bad331e589a8feee5174b

  • SSDEEP

    6144:GjYKlAhUBVB3pQOEhdjEh6s03EM9TyPAJoeKjFwEuei8i/nW0x/N5UXnyNpmMbvy:GjYRm7QOmdjNhlye6q/W0x/N59bbXM

Malware Config

Targets

    • Target

      038b53fd1910eb848172c12c50d17bc052330e8cfa8f910e1e7a309c8956c577

    • Size

      428KB

    • MD5

      488109113faa261fcad6852978d861cd

    • SHA1

      0fbe869a1f7807df979d312345b26d79216397e7

    • SHA256

      038b53fd1910eb848172c12c50d17bc052330e8cfa8f910e1e7a309c8956c577

    • SHA512

      cf2b5c5228973c588ed2cad9e82ac6f3a614901ab6e7792dd1d945923ef6a5d014075e7e48326a81e115d3ffc4344640db0b3ffb224bad331e589a8feee5174b

    • SSDEEP

      6144:GjYKlAhUBVB3pQOEhdjEh6s03EM9TyPAJoeKjFwEuei8i/nW0x/N5UXnyNpmMbvy:GjYRm7QOmdjNhlye6q/W0x/N59bbXM

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks