Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4f3f7d82c6b2471011b4c56241f635bcc476239e6c35dbf0c1adb9782f8561c5

  • Size

    2.6MB

  • Sample

    241027-21q49sslav

  • MD5

    c52bac4d8e2589b8afac82e5d8a7772d

  • SHA1

    594c1a58e1e7e5168d3fd7f069f3fbd36bd611c3

  • SHA256

    4f3f7d82c6b2471011b4c56241f635bcc476239e6c35dbf0c1adb9782f8561c5

  • SHA512

    af849ef05508c4faa54e05ff3d5d8c0b0e5911c4832e1c6bf9ee95602d439715ee46dd1c815fa2c296700c2db1e3da5471e50c44b2a618847814a5c35437dedd

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUp0b

Malware Config

Targets

    • Target

      4f3f7d82c6b2471011b4c56241f635bcc476239e6c35dbf0c1adb9782f8561c5

    • Size

      2.6MB

    • MD5

      c52bac4d8e2589b8afac82e5d8a7772d

    • SHA1

      594c1a58e1e7e5168d3fd7f069f3fbd36bd611c3

    • SHA256

      4f3f7d82c6b2471011b4c56241f635bcc476239e6c35dbf0c1adb9782f8561c5

    • SHA512

      af849ef05508c4faa54e05ff3d5d8c0b0e5911c4832e1c6bf9ee95602d439715ee46dd1c815fa2c296700c2db1e3da5471e50c44b2a618847814a5c35437dedd

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUp0b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks