Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    513a284ccd2045fbec0b39a0a6d3003afd9edc530ec9a7104f85e34ae653930c

  • Size

    2.6MB

  • Sample

    241027-25ypxaslar

  • MD5

    72a65fdd75fc8f30c9b040aa8b7749c4

  • SHA1

    368a182176a94646b9c5cf8b93dbee3d4c76fb9e

  • SHA256

    513a284ccd2045fbec0b39a0a6d3003afd9edc530ec9a7104f85e34ae653930c

  • SHA512

    142576c119bad9fad3a311eb0294ad5fa2e9b53772a5ef7b21e881b62bfdf6b671e6725723d57025dbe01d35f645b75c96f8cffe6bbab68910c524bc5a84d312

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bS:sxX7QnxrloE5dpUpWb

Malware Config

Targets

    • Target

      513a284ccd2045fbec0b39a0a6d3003afd9edc530ec9a7104f85e34ae653930c

    • Size

      2.6MB

    • MD5

      72a65fdd75fc8f30c9b040aa8b7749c4

    • SHA1

      368a182176a94646b9c5cf8b93dbee3d4c76fb9e

    • SHA256

      513a284ccd2045fbec0b39a0a6d3003afd9edc530ec9a7104f85e34ae653930c

    • SHA512

      142576c119bad9fad3a311eb0294ad5fa2e9b53772a5ef7b21e881b62bfdf6b671e6725723d57025dbe01d35f645b75c96f8cffe6bbab68910c524bc5a84d312

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bS:sxX7QnxrloE5dpUpWb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks