Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    60899e1d990b1d67f4b892530019333df85bc5b1b962c3c0f24555d51a850fa1

  • Size

    394KB

  • Sample

    240921-qnae7sthkd

  • MD5

    7e469a961fedc0c0d89f1e446f8c98db

  • SHA1

    7a415b177ab12310a45eda6c8e42b650a902a31e

  • SHA256

    60899e1d990b1d67f4b892530019333df85bc5b1b962c3c0f24555d51a850fa1

  • SHA512

    1786c5836c887a64803937c3fa411c5e2d35748a486427b91dba938763c2c1e6c317b943e12329e60dde05610787a4f5f22042edf1ab39114b69fd5691c29454

  • SSDEEP

    6144:t46tGdye412P2zPVz7jUBs8hqcBCi6dbfra4erJlt9A+xX1oOAisEIWmGeNkfGuz:t3NbZahVy41

Malware Config

Targets

    • Target

      60899e1d990b1d67f4b892530019333df85bc5b1b962c3c0f24555d51a850fa1

    • Size

      394KB

    • MD5

      7e469a961fedc0c0d89f1e446f8c98db

    • SHA1

      7a415b177ab12310a45eda6c8e42b650a902a31e

    • SHA256

      60899e1d990b1d67f4b892530019333df85bc5b1b962c3c0f24555d51a850fa1

    • SHA512

      1786c5836c887a64803937c3fa411c5e2d35748a486427b91dba938763c2c1e6c317b943e12329e60dde05610787a4f5f22042edf1ab39114b69fd5691c29454

    • SSDEEP

      6144:t46tGdye412P2zPVz7jUBs8hqcBCi6dbfra4erJlt9A+xX1oOAisEIWmGeNkfGuz:t3NbZahVy41

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks