Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    56edf103909f6c7ae37b7f6334f9427821024c5d31f57b1aaaebc1903d666af0N

  • Size

    2.6MB

  • Sample

    241025-1xxl7swgpm

  • MD5

    592a2f22c863c43e3a47086327907a20

  • SHA1

    1ed4bba642f447e7a973afc6ad6bd4d09c9c7525

  • SHA256

    56edf103909f6c7ae37b7f6334f9427821024c5d31f57b1aaaebc1903d666af0

  • SHA512

    2689544934d1683fbb6bf533858750613382dbe99c3719b4713e95d322d37f22a703037d17a2def3d63c1d9e26493bd7f599a6523dd5ea32d157a1c25be5c72b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpAb

Malware Config

Targets

    • Target

      56edf103909f6c7ae37b7f6334f9427821024c5d31f57b1aaaebc1903d666af0N

    • Size

      2.6MB

    • MD5

      592a2f22c863c43e3a47086327907a20

    • SHA1

      1ed4bba642f447e7a973afc6ad6bd4d09c9c7525

    • SHA256

      56edf103909f6c7ae37b7f6334f9427821024c5d31f57b1aaaebc1903d666af0

    • SHA512

      2689544934d1683fbb6bf533858750613382dbe99c3719b4713e95d322d37f22a703037d17a2def3d63c1d9e26493bd7f599a6523dd5ea32d157a1c25be5c72b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpAb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks