Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    main.exe

  • Size

    22.4MB

  • Sample

    241001-226aksvfpn

  • MD5

    4a86931dd02c0299f76c87ad99476593

  • SHA1

    4c8ec1833be20ce541d4a386d736b8867e99ef14

  • SHA256

    1d49e223b2f66bd37caa352f3844a1fe6d940290a44088f2e624ed45d324aba0

  • SHA512

    5295fd70a4676ac92f148cdb983ff73084425baa0156e9530924cf55eafebae2606834a85667413f8ae351539b2144479fe8e11695ec2063fc2fa28ac970515a

  • SSDEEP

    393216:EqPnLFXlraQbq7oBDOETgs77cGM2gNmtpMpD8D5ODn7Tiss:lPLFXNaQbq7PE7f8mU4c7q

Malware Config

Targets

    • Target

      main.exe

    • Size

      22.4MB

    • MD5

      4a86931dd02c0299f76c87ad99476593

    • SHA1

      4c8ec1833be20ce541d4a386d736b8867e99ef14

    • SHA256

      1d49e223b2f66bd37caa352f3844a1fe6d940290a44088f2e624ed45d324aba0

    • SHA512

      5295fd70a4676ac92f148cdb983ff73084425baa0156e9530924cf55eafebae2606834a85667413f8ae351539b2144479fe8e11695ec2063fc2fa28ac970515a

    • SSDEEP

      393216:EqPnLFXlraQbq7oBDOETgs77cGM2gNmtpMpD8D5ODn7Tiss:lPLFXNaQbq7PE7f8mU4c7q

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Legitimate hosting services abused for malware hosting/C2

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks