Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7469fdb9418086e86aec5b18a360fce050725e6003500304191a3048d77ef57cN

  • Size

    115KB

  • Sample

    240929-k3j1asxcpj

  • MD5

    fdbd9187b91a666ab3e3ceff5358aa50

  • SHA1

    c70ed34621145a82502582a33e569ff9f93dee63

  • SHA256

    7469fdb9418086e86aec5b18a360fce050725e6003500304191a3048d77ef57c

  • SHA512

    6ec979e7aa6be5b5c5a94a9a557814aa55b97ed4cea70253cb6111c98e278829d3462bee620104466d5fce87dbad6c7667370a347895bbe809f64efcd491a61d

  • SSDEEP

    768:0MusTIlZLwRcC5caQRZfOWH0bhAUjkUXCDl++rNmxuEyb1UhT3zNsTTcjK/:A2mZLQcC5ZQHX0FXYPrN7EVskI

Malware Config

Targets

    • Target

      7469fdb9418086e86aec5b18a360fce050725e6003500304191a3048d77ef57cN

    • Size

      115KB

    • MD5

      fdbd9187b91a666ab3e3ceff5358aa50

    • SHA1

      c70ed34621145a82502582a33e569ff9f93dee63

    • SHA256

      7469fdb9418086e86aec5b18a360fce050725e6003500304191a3048d77ef57c

    • SHA512

      6ec979e7aa6be5b5c5a94a9a557814aa55b97ed4cea70253cb6111c98e278829d3462bee620104466d5fce87dbad6c7667370a347895bbe809f64efcd491a61d

    • SSDEEP

      768:0MusTIlZLwRcC5caQRZfOWH0bhAUjkUXCDl++rNmxuEyb1UhT3zNsTTcjK/:A2mZLQcC5ZQHX0FXYPrN7EVskI

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks