Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6fcd9124deb2c6136cb8763263587db2637e5906e52b9f22273e0e3493d13ac1

  • Size

    93KB

  • Sample

    240921-segh9syenl

  • MD5

    0b3aa41e7f3985b2f1eaa74cc5ab7a32

  • SHA1

    861d59546edef8a88e9bfdf14ab49b72b6379443

  • SHA256

    6fcd9124deb2c6136cb8763263587db2637e5906e52b9f22273e0e3493d13ac1

  • SHA512

    c26cc68ac205a6f74223729c6ff8f93ed20fc29d88524b2ef9c264c9a50d2b92b9d99eeecb9d05d253443f18ff93f269dce15b208a4f4cd095a8db603ba6d911

  • SSDEEP

    1536:2vaYzMXqtGNttyeiZnZLYm1nHB0UxMkzOt7HcvJGt5AdHIOWnToIf12Z9:2vaY46tGNttyeQLYm1nhAWJGSCTBf12P

Malware Config

Targets

    • Target

      6fcd9124deb2c6136cb8763263587db2637e5906e52b9f22273e0e3493d13ac1

    • Size

      93KB

    • MD5

      0b3aa41e7f3985b2f1eaa74cc5ab7a32

    • SHA1

      861d59546edef8a88e9bfdf14ab49b72b6379443

    • SHA256

      6fcd9124deb2c6136cb8763263587db2637e5906e52b9f22273e0e3493d13ac1

    • SHA512

      c26cc68ac205a6f74223729c6ff8f93ed20fc29d88524b2ef9c264c9a50d2b92b9d99eeecb9d05d253443f18ff93f269dce15b208a4f4cd095a8db603ba6d911

    • SSDEEP

      1536:2vaYzMXqtGNttyeiZnZLYm1nHB0UxMkzOt7HcvJGt5AdHIOWnToIf12Z9:2vaY46tGNttyeQLYm1nhAWJGSCTBf12P

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks