Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f06974117c40911501007b835777d44b67171bae4ddb4b77a0842fe3a93bc3a6.exe.sample.exe
-
Size
185KB
-
Sample
250211-1emdhsspgt
-
MD5
95de64dc15a647bc5e478157cbb6e7d1
-
SHA1
50d29910bc8008c655558d7919bc401d350bf1a6
-
SHA256
e2d16d19b210d674baafadc6af2cf820bff0e68441525c8030bcdb02cde90546
-
SHA512
f9afa683fffea52ed231bf4a2987e7cc751f71ad1abc81a9df486cbcd752314af319e1589fdb60d71b1c4965d19322d92b4a30e35cace3c331fbb6cdb6257d87
-
SSDEEP
3072:Lrcadh9xe9jnSLQ6N0kYBVXpnfDa2mOQtBFxRvmwIh7d7ZkxQ1zbCZ9QAzqyuqn:LAA909bSL/+kYBVXpf+2mh5PvjIhJmeW
Malware Config
Targets
-
-
Target
sample
-
Size
342KB
-
MD5
12a0a4fad23eb3b9ee6a4e7baa6fa880
-
SHA1
24580e35f24f7a1417ed26fe81432d5c5fc5cc30
-
SHA256
f06974117c40911501007b835777d44b67171bae4ddb4b77a0842fe3a93bc3a6
-
SHA512
684cc83a6aac254182da8e212a15fbc0e1b739dc36797e0de2e93cae382e5cf6f7ee25162ac41481a404cf97bd07feb027883249f51730380b01a244bfee53be
-
SSDEEP
6144:+x2QdiglMFGfzIBeZO8Wf2cMRsCO/xZqqDLuz+4pQwVbTVCaF9QAepv:+AQsgScEydsCJqnuq4V9CaF9Uv
Score10/10-
Trigona
A ransomware first seen at the beginning of the 2022.
-
Trigona family
-
Credentials from Password Stores: Windows Credential Manager
Suspicious access to Credentials History.
-
Drops startup file
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Drops desktop.ini file(s)
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
2Credentials from Web Browsers
1Windows Credential Manager
1Unsecured Credentials
1Credentials In Files
1