Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3f589eca3018796925ec70c0472e5f28393a49f475d95a73e500d82d5394a83b

  • Size

    2.6MB

  • Sample

    241027-12qz8a1ndy

  • MD5

    2f0861cecfacafb3cc4ecb1fde41399c

  • SHA1

    ba8e881c439e170d53612af3178784f0fa1df4a4

  • SHA256

    3f589eca3018796925ec70c0472e5f28393a49f475d95a73e500d82d5394a83b

  • SHA512

    dbd4223e2b3ff307744c7fc1c9b7d5b2c50040c4a1e2e116e8457416d87ea993a2f3c2339b716d3056a7576aa6a70daa4845b16428d2cf3a81d823eaa1d709a4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bS:sxX7QnxrloE5dpUpeb

Malware Config

Targets

    • Target

      3f589eca3018796925ec70c0472e5f28393a49f475d95a73e500d82d5394a83b

    • Size

      2.6MB

    • MD5

      2f0861cecfacafb3cc4ecb1fde41399c

    • SHA1

      ba8e881c439e170d53612af3178784f0fa1df4a4

    • SHA256

      3f589eca3018796925ec70c0472e5f28393a49f475d95a73e500d82d5394a83b

    • SHA512

      dbd4223e2b3ff307744c7fc1c9b7d5b2c50040c4a1e2e116e8457416d87ea993a2f3c2339b716d3056a7576aa6a70daa4845b16428d2cf3a81d823eaa1d709a4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bS:sxX7QnxrloE5dpUpeb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks