Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4568b24e7bd0c68578b3d44c7fa5c9dedade7d17c923ea85a4f084c9c2927afe

  • Size

    570KB

  • Sample

    240925-xyvx8asfpr

  • MD5

    9de344775c6314140afb433a5e603a14

  • SHA1

    5048e550ec5e48a203585727b683d0c3d5172778

  • SHA256

    4568b24e7bd0c68578b3d44c7fa5c9dedade7d17c923ea85a4f084c9c2927afe

  • SHA512

    11a49b9620d3d8a27b85ce9fc10781d6de30e3a05cafb63e372ce3001db12d5701c00e0a3663e2b7dbac5ee3f8fa07984bf2cdf673a0b8229f3460cf477bd792

  • SSDEEP

    12288:J+azULc+Gl3DflwlLrfw+fZdI+eN9K61cNiSvSGtTnOmyMcp7YJhne:JBz2c+qILkOdIdcN/vvtTObMceJhe

Malware Config

Targets

    • Target

      4568b24e7bd0c68578b3d44c7fa5c9dedade7d17c923ea85a4f084c9c2927afe

    • Size

      570KB

    • MD5

      9de344775c6314140afb433a5e603a14

    • SHA1

      5048e550ec5e48a203585727b683d0c3d5172778

    • SHA256

      4568b24e7bd0c68578b3d44c7fa5c9dedade7d17c923ea85a4f084c9c2927afe

    • SHA512

      11a49b9620d3d8a27b85ce9fc10781d6de30e3a05cafb63e372ce3001db12d5701c00e0a3663e2b7dbac5ee3f8fa07984bf2cdf673a0b8229f3460cf477bd792

    • SSDEEP

      12288:J+azULc+Gl3DflwlLrfw+fZdI+eN9K61cNiSvSGtTnOmyMcp7YJhne:JBz2c+qILkOdIdcN/vvtTObMceJhe

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks