Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    10c8c4aa62d6c6c54548311bda7c392b49fb70a507184e3fac8b2666d43c6272

  • Size

    165KB

  • Sample

    240921-mfcntaxcqf

  • MD5

    febbce4a4884011c8203571018a6db1b

  • SHA1

    3906e1612c2d67463d991fbf87053e2efbed005b

  • SHA256

    10c8c4aa62d6c6c54548311bda7c392b49fb70a507184e3fac8b2666d43c6272

  • SHA512

    61beac16bb56b2bd79b9e629c0448d01fbcadafb2ef0e014b415a0c8123147195b164c33f29ce122d3ddd85f00e464e492336e6189627b999ed8786b156a9ebe

  • SSDEEP

    3072:PAaY46tGNttyJQ7KRZ99djmMGWBgh1002J8emEu3T7TO+9Z9sTOVrZzxVxU:Y46tGdytYWBW1Wu3rOOuOVr8

Malware Config

Targets

    • Target

      10c8c4aa62d6c6c54548311bda7c392b49fb70a507184e3fac8b2666d43c6272

    • Size

      165KB

    • MD5

      febbce4a4884011c8203571018a6db1b

    • SHA1

      3906e1612c2d67463d991fbf87053e2efbed005b

    • SHA256

      10c8c4aa62d6c6c54548311bda7c392b49fb70a507184e3fac8b2666d43c6272

    • SHA512

      61beac16bb56b2bd79b9e629c0448d01fbcadafb2ef0e014b415a0c8123147195b164c33f29ce122d3ddd85f00e464e492336e6189627b999ed8786b156a9ebe

    • SSDEEP

      3072:PAaY46tGNttyJQ7KRZ99djmMGWBgh1002J8emEu3T7TO+9Z9sTOVrZzxVxU:Y46tGdytYWBW1Wu3rOOuOVr8

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks