Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3ad1bb5a3930314fdc8ed017bf5d0a9e96c4276a1454148d7c4bb63a6d525aa4

  • Size

    2.6MB

  • Sample

    241027-1vwxws1max

  • MD5

    fccbda79fcfab9e4219cd5bbc848e7cf

  • SHA1

    964117e47609dbf942cf1c57a882d972c36723d6

  • SHA256

    3ad1bb5a3930314fdc8ed017bf5d0a9e96c4276a1454148d7c4bb63a6d525aa4

  • SHA512

    b6ca0745f33ec78f19250f39bb2264abea14a92be5a995b452e31ac49d0ca338ae2da7f0e8d5e39d8e41ce962057df5c881b11a8315bb6f55f0827c06ca684f8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bSq:sxX7QnxrloE5dpUpmbV

Malware Config

Targets

    • Target

      3ad1bb5a3930314fdc8ed017bf5d0a9e96c4276a1454148d7c4bb63a6d525aa4

    • Size

      2.6MB

    • MD5

      fccbda79fcfab9e4219cd5bbc848e7cf

    • SHA1

      964117e47609dbf942cf1c57a882d972c36723d6

    • SHA256

      3ad1bb5a3930314fdc8ed017bf5d0a9e96c4276a1454148d7c4bb63a6d525aa4

    • SHA512

      b6ca0745f33ec78f19250f39bb2264abea14a92be5a995b452e31ac49d0ca338ae2da7f0e8d5e39d8e41ce962057df5c881b11a8315bb6f55f0827c06ca684f8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bSq:sxX7QnxrloE5dpUpmbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks