Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e805482e442c31a9d922d5af70a9dcc37bfeb2f0b29e5c73ad76754692298536

  • Size

    179KB

  • Sample

    240912-vjshfavcpj

  • MD5

    0617cc72ab76b1c078381384040bc9e1

  • SHA1

    c5f9b54fd293f990c2113c956b40bdbdcc888d19

  • SHA256

    e805482e442c31a9d922d5af70a9dcc37bfeb2f0b29e5c73ad76754692298536

  • SHA512

    4ad181cf3b1a23fd8623a8aa2d0113a8410891dee2dea8fb2d99826c125aeb97d36242e123dae77b985db41b5e64ffc5a4107555e9bc823690e1759812ea08e0

  • SSDEEP

    3072:2O8aE7yr7EZSBI1f4uuOV0uT4lBtUCjZqMNq:M0pqf4NOV0u0Lvq

Malware Config

Targets

    • Target

      e805482e442c31a9d922d5af70a9dcc37bfeb2f0b29e5c73ad76754692298536

    • Size

      179KB

    • MD5

      0617cc72ab76b1c078381384040bc9e1

    • SHA1

      c5f9b54fd293f990c2113c956b40bdbdcc888d19

    • SHA256

      e805482e442c31a9d922d5af70a9dcc37bfeb2f0b29e5c73ad76754692298536

    • SHA512

      4ad181cf3b1a23fd8623a8aa2d0113a8410891dee2dea8fb2d99826c125aeb97d36242e123dae77b985db41b5e64ffc5a4107555e9bc823690e1759812ea08e0

    • SSDEEP

      3072:2O8aE7yr7EZSBI1f4uuOV0uT4lBtUCjZqMNq:M0pqf4NOV0u0Lvq

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks