Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60

  • Size

    11.1MB

  • Sample

    241006-ejyrfswfje

  • MD5

    ed123a2573e3e6086e7c3d6d6bc49950

  • SHA1

    9f8bbf1891f17762b22e95c152328b759e57b1b4

  • SHA256

    d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60

  • SHA512

    10bc7e6134ed30b723f8b619d669ca5d98457e153d7e1b513cbd5e85cead25872ea28bc7ee0a0bd97bf0360b134ccb91569a4f11d839509840884874262fa24c

  • SSDEEP

    98304:4b+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:y+kIGv3y/x+KTbfjJ+kdnAlejY

Malware Config

Targets

    • Target

      d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60

    • Size

      11.1MB

    • MD5

      ed123a2573e3e6086e7c3d6d6bc49950

    • SHA1

      9f8bbf1891f17762b22e95c152328b759e57b1b4

    • SHA256

      d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60

    • SHA512

      10bc7e6134ed30b723f8b619d669ca5d98457e153d7e1b513cbd5e85cead25872ea28bc7ee0a0bd97bf0360b134ccb91569a4f11d839509840884874262fa24c

    • SSDEEP

      98304:4b+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:y+kIGv3y/x+KTbfjJ+kdnAlejY

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks