Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    17c98c66fee3afc7b354f73cfbc63d62271fc7b93f3f2e26277035451471152cN

  • Size

    2.6MB

  • Sample

    240928-jgadaswfrb

  • MD5

    0914143e1282401f23d0b5f072f8ee60

  • SHA1

    cf2df366c40c1e38621da27eae9bab47a80d0f80

  • SHA256

    17c98c66fee3afc7b354f73cfbc63d62271fc7b93f3f2e26277035451471152c

  • SHA512

    3eab0f2f6f75e3b65f01a245cccef81463d06d8bc4b507dcc2a525bed07494ae1c2896561c5994626eb53b867e4c5b9a4e91bce7ea346f9d07b4fbcedfcaebc4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bS:sxX7QnxrloE5dpUpGb

Malware Config

Targets

    • Target

      17c98c66fee3afc7b354f73cfbc63d62271fc7b93f3f2e26277035451471152cN

    • Size

      2.6MB

    • MD5

      0914143e1282401f23d0b5f072f8ee60

    • SHA1

      cf2df366c40c1e38621da27eae9bab47a80d0f80

    • SHA256

      17c98c66fee3afc7b354f73cfbc63d62271fc7b93f3f2e26277035451471152c

    • SHA512

      3eab0f2f6f75e3b65f01a245cccef81463d06d8bc4b507dcc2a525bed07494ae1c2896561c5994626eb53b867e4c5b9a4e91bce7ea346f9d07b4fbcedfcaebc4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bS:sxX7QnxrloE5dpUpGb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks