Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3be18c1c785e685cf41c889455ffd4b200735fa8127077bc82fd49651ca54291

  • Size

    2.6MB

  • Sample

    241027-1wnb5stcnf

  • MD5

    bada05b8198cd1d69efc91576ae91bad

  • SHA1

    92648c8fc29b4366be8f708088ece76d9a3498f5

  • SHA256

    3be18c1c785e685cf41c889455ffd4b200735fa8127077bc82fd49651ca54291

  • SHA512

    d40986a61cb3a28921b82959f3e2b7e114bbe63f8d02ebcce059ade485b954bdb831ed79a29877b90bbfdb67f0e2eb10b7f70ede6495906ccb029f1d29942e73

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUpCb

Malware Config

Targets

    • Target

      3be18c1c785e685cf41c889455ffd4b200735fa8127077bc82fd49651ca54291

    • Size

      2.6MB

    • MD5

      bada05b8198cd1d69efc91576ae91bad

    • SHA1

      92648c8fc29b4366be8f708088ece76d9a3498f5

    • SHA256

      3be18c1c785e685cf41c889455ffd4b200735fa8127077bc82fd49651ca54291

    • SHA512

      d40986a61cb3a28921b82959f3e2b7e114bbe63f8d02ebcce059ade485b954bdb831ed79a29877b90bbfdb67f0e2eb10b7f70ede6495906ccb029f1d29942e73

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUpCb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks