Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5f2f5f1fc8830cf812d9bfafeb59b2917f3be149bfc35beeba3ec993c59b2992N

  • Size

    2.6MB

  • Sample

    241025-2aezbatkcx

  • MD5

    65b5651de29e66242cc589d5653bd360

  • SHA1

    d3809de2032e64d1cd038ff580f875948da31b03

  • SHA256

    5f2f5f1fc8830cf812d9bfafeb59b2917f3be149bfc35beeba3ec993c59b2992

  • SHA512

    566c403ddb5ad551560064d2b036212e268048acbaf30519f7c7542aea163eed232c6145833c7f0de276f7e51b7fba970bd4dba8efd6627e7a3ed94c9f0fddf3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpFb

Malware Config

Targets

    • Target

      5f2f5f1fc8830cf812d9bfafeb59b2917f3be149bfc35beeba3ec993c59b2992N

    • Size

      2.6MB

    • MD5

      65b5651de29e66242cc589d5653bd360

    • SHA1

      d3809de2032e64d1cd038ff580f875948da31b03

    • SHA256

      5f2f5f1fc8830cf812d9bfafeb59b2917f3be149bfc35beeba3ec993c59b2992

    • SHA512

      566c403ddb5ad551560064d2b036212e268048acbaf30519f7c7542aea163eed232c6145833c7f0de276f7e51b7fba970bd4dba8efd6627e7a3ed94c9f0fddf3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpFb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks