Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b5a6c06aef9a854803c89f08624cf3e71c68df02c166299dd8fd14f3ffe622c1N

  • Size

    2.6MB

  • Sample

    240928-mj9gys1bpp

  • MD5

    4be4cf1d7701bb2a386c452ec9577130

  • SHA1

    5d6cccb56d87dbafcff675f88328f0990f7efee4

  • SHA256

    b5a6c06aef9a854803c89f08624cf3e71c68df02c166299dd8fd14f3ffe622c1

  • SHA512

    6f8c709d8fd57295ab94571163f24180ffb73e727e6db918ecd02bc144000127d2fd4adfa030a31fbddbf5c692e68d8e48256f41f78fcacd3e06b380b5343d01

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LByB/bS:sxX7QnxrloE5dpUpxb

Malware Config

Targets

    • Target

      b5a6c06aef9a854803c89f08624cf3e71c68df02c166299dd8fd14f3ffe622c1N

    • Size

      2.6MB

    • MD5

      4be4cf1d7701bb2a386c452ec9577130

    • SHA1

      5d6cccb56d87dbafcff675f88328f0990f7efee4

    • SHA256

      b5a6c06aef9a854803c89f08624cf3e71c68df02c166299dd8fd14f3ffe622c1

    • SHA512

      6f8c709d8fd57295ab94571163f24180ffb73e727e6db918ecd02bc144000127d2fd4adfa030a31fbddbf5c692e68d8e48256f41f78fcacd3e06b380b5343d01

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LByB/bS:sxX7QnxrloE5dpUpxb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks