Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a701bdb1ba79117b1313008bbc4e700464c920f41c91dbb8e408a54b2d74461f

  • Size

    2.6MB

  • Sample

    241013-byjpassdqd

  • MD5

    5837741bd00efb728cd93cfcf6ac01a1

  • SHA1

    a3dc0e5bc0c7228a15a3094703d7da6516f75305

  • SHA256

    a701bdb1ba79117b1313008bbc4e700464c920f41c91dbb8e408a54b2d74461f

  • SHA512

    4d4639a14be10aabe68218d6164cfc7854413043edec805ce00860ec775540989f24dfdeb8789e8f426c5ab9fba588ac5a28639d2103201789b10e20862d2380

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpYb

Malware Config

Targets

    • Target

      a701bdb1ba79117b1313008bbc4e700464c920f41c91dbb8e408a54b2d74461f

    • Size

      2.6MB

    • MD5

      5837741bd00efb728cd93cfcf6ac01a1

    • SHA1

      a3dc0e5bc0c7228a15a3094703d7da6516f75305

    • SHA256

      a701bdb1ba79117b1313008bbc4e700464c920f41c91dbb8e408a54b2d74461f

    • SHA512

      4d4639a14be10aabe68218d6164cfc7854413043edec805ce00860ec775540989f24dfdeb8789e8f426c5ab9fba588ac5a28639d2103201789b10e20862d2380

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpYb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks