Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60
-
Size
11.1MB
-
Sample
241006-ejyrfswfje
-
MD5
ed123a2573e3e6086e7c3d6d6bc49950
-
SHA1
9f8bbf1891f17762b22e95c152328b759e57b1b4
-
SHA256
d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60
-
SHA512
10bc7e6134ed30b723f8b619d669ca5d98457e153d7e1b513cbd5e85cead25872ea28bc7ee0a0bd97bf0360b134ccb91569a4f11d839509840884874262fa24c
-
SSDEEP
98304:4b+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:y+kIGv3y/x+KTbfjJ+kdnAlejY
Malware Config
Targets
-
-
Target
d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60
-
Size
11.1MB
-
MD5
ed123a2573e3e6086e7c3d6d6bc49950
-
SHA1
9f8bbf1891f17762b22e95c152328b759e57b1b4
-
SHA256
d3fb9e376020fafcb32c23aa3bf24f477139b0a3975ebd9f0230f984b76bac60
-
SHA512
10bc7e6134ed30b723f8b619d669ca5d98457e153d7e1b513cbd5e85cead25872ea28bc7ee0a0bd97bf0360b134ccb91569a4f11d839509840884874262fa24c
-
SSDEEP
98304:4b+0ChEPIGiq3y3vx+w9TbfjJ+kdfpK46Tle36jknz9Y:y+kIGv3y/x+KTbfjJ+kdnAlejY
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1