Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    u is cooked.bat

  • Size

    2KB

  • Sample

    241025-3a44wawdme

  • MD5

    5100640ebab90d32e5e80affdb821de4

  • SHA1

    f202fc69ddf7d2b43353057898fd9c81c7d6bbff

  • SHA256

    1d2a32632d110052d6161d41d4df822f7fea963a62137afb957b6023f22d8121

  • SHA512

    f1bc34dcc86406ee0ea65b50a9917af5f6d224c5096eef9b3f119c9c0adc802191738a64280fff2637963ab4ce6d9d849949aff2bab20f46303c42e8708274d6

Malware Config

Targets

    • Target

      u is cooked.bat

    • Size

      2KB

    • MD5

      5100640ebab90d32e5e80affdb821de4

    • SHA1

      f202fc69ddf7d2b43353057898fd9c81c7d6bbff

    • SHA256

      1d2a32632d110052d6161d41d4df822f7fea963a62137afb957b6023f22d8121

    • SHA512

      f1bc34dcc86406ee0ea65b50a9917af5f6d224c5096eef9b3f119c9c0adc802191738a64280fff2637963ab4ce6d9d849949aff2bab20f46303c42e8708274d6

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks