Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    13db12740f0bcd4a44b14e16095b17922d7cf6c1caff49bf183300989c3e415dN

  • Size

    2.6MB

  • Sample

    241025-zbl3xaskdz

  • MD5

    f71b4809389306c2cc8b595b7c0d9e10

  • SHA1

    1f3fd4640e327a2e18e87719d36a9efa09f1a5f4

  • SHA256

    13db12740f0bcd4a44b14e16095b17922d7cf6c1caff49bf183300989c3e415d

  • SHA512

    504f2e7b7ec327e54b0513e40d82efe5c6af2ebf6d98e2263d8f481bf462937a9105e8ce400ab0cb5b91a91208199e1dca2b628464422797aa3591bda672e13a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBmB/bS:sxX7QnxrloE5dpUpxb

Malware Config

Targets

    • Target

      13db12740f0bcd4a44b14e16095b17922d7cf6c1caff49bf183300989c3e415dN

    • Size

      2.6MB

    • MD5

      f71b4809389306c2cc8b595b7c0d9e10

    • SHA1

      1f3fd4640e327a2e18e87719d36a9efa09f1a5f4

    • SHA256

      13db12740f0bcd4a44b14e16095b17922d7cf6c1caff49bf183300989c3e415d

    • SHA512

      504f2e7b7ec327e54b0513e40d82efe5c6af2ebf6d98e2263d8f481bf462937a9105e8ce400ab0cb5b91a91208199e1dca2b628464422797aa3591bda672e13a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBmB/bS:sxX7QnxrloE5dpUpxb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks