Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b868350db1f4552e806d90e1bc792e991b66fee10cb935920217bbc631f156c7

  • Size

    66KB

  • Sample

    240921-rsjecaxbql

  • MD5

    13111473d779d572f5db2e8b0a541e42

  • SHA1

    df3a9bdb9d0f2c62d0e1231f18add3eb74476cd1

  • SHA256

    b868350db1f4552e806d90e1bc792e991b66fee10cb935920217bbc631f156c7

  • SHA512

    7cae12e5983b37241e895ba9d58709bdeda77fc2253751145157423d3068abef17a059d5c057f39d1c306a96426e99bc7d14e598bb891ccd7befcbfaad332a0a

  • SSDEEP

    768:2UmNHp+Vxr1x5cE9Fl5pz8w1rU9hFInlIUC4OMMwP3Sy6EGyI4t6a9AkHNXLrM:2fpsrz8GvnGUC4ayFGyHNXk

Malware Config

Targets

    • Target

      b868350db1f4552e806d90e1bc792e991b66fee10cb935920217bbc631f156c7

    • Size

      66KB

    • MD5

      13111473d779d572f5db2e8b0a541e42

    • SHA1

      df3a9bdb9d0f2c62d0e1231f18add3eb74476cd1

    • SHA256

      b868350db1f4552e806d90e1bc792e991b66fee10cb935920217bbc631f156c7

    • SHA512

      7cae12e5983b37241e895ba9d58709bdeda77fc2253751145157423d3068abef17a059d5c057f39d1c306a96426e99bc7d14e598bb891ccd7befcbfaad332a0a

    • SSDEEP

      768:2UmNHp+Vxr1x5cE9Fl5pz8w1rU9hFInlIUC4OMMwP3Sy6EGyI4t6a9AkHNXLrM:2fpsrz8GvnGUC4ayFGyHNXk

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks