Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b057b7cf8e495e0eef563c8dade29e99e400ef6d163442ff66a76c2caca57847N

  • Size

    2.6MB

  • Sample

    241025-yzgmnavhkj

  • MD5

    a7d949043d21ad9d43f5c6ffdb1c7300

  • SHA1

    73fa0d52745a3a2ad73872d9b008c9cbe8ce6209

  • SHA256

    b057b7cf8e495e0eef563c8dade29e99e400ef6d163442ff66a76c2caca57847

  • SHA512

    7f3f6fa5e498b2d2251bf5445b1b3b7311b36868a95413967e30c8edbd353a82587398948e460115f9f4a700ef23cca0cdda1f20b95fe3e8c2c771c4fc6401dc

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpIb

Malware Config

Targets

    • Target

      b057b7cf8e495e0eef563c8dade29e99e400ef6d163442ff66a76c2caca57847N

    • Size

      2.6MB

    • MD5

      a7d949043d21ad9d43f5c6ffdb1c7300

    • SHA1

      73fa0d52745a3a2ad73872d9b008c9cbe8ce6209

    • SHA256

      b057b7cf8e495e0eef563c8dade29e99e400ef6d163442ff66a76c2caca57847

    • SHA512

      7f3f6fa5e498b2d2251bf5445b1b3b7311b36868a95413967e30c8edbd353a82587398948e460115f9f4a700ef23cca0cdda1f20b95fe3e8c2c771c4fc6401dc

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpIb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks