Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    14e8c91c1485066da4a6e6e8ad04b9ee3b37272c7efc851e523fb89e843b954fN

  • Size

    2.6MB

  • Sample

    241025-18k3jssqer

  • MD5

    13ae8d79060bc66866ef35fda934f9c0

  • SHA1

    99ec4dd2da337ed22d15e8c29584e3f80dd5a9ad

  • SHA256

    14e8c91c1485066da4a6e6e8ad04b9ee3b37272c7efc851e523fb89e843b954f

  • SHA512

    babc7b950145ee675dc20223bafac024c4bd940b71b2fa77102d2b1575dd9eb99f51f85772133612da910b15489e044b6f97f583659798cf92cf3071df09fba8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bS:sxX7QnxrloE5dpUpmb

Malware Config

Targets

    • Target

      14e8c91c1485066da4a6e6e8ad04b9ee3b37272c7efc851e523fb89e843b954fN

    • Size

      2.6MB

    • MD5

      13ae8d79060bc66866ef35fda934f9c0

    • SHA1

      99ec4dd2da337ed22d15e8c29584e3f80dd5a9ad

    • SHA256

      14e8c91c1485066da4a6e6e8ad04b9ee3b37272c7efc851e523fb89e843b954f

    • SHA512

      babc7b950145ee675dc20223bafac024c4bd940b71b2fa77102d2b1575dd9eb99f51f85772133612da910b15489e044b6f97f583659798cf92cf3071df09fba8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB5B/bS:sxX7QnxrloE5dpUpmb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks