Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7103edc262cb73b94bd77da978ad0313

  • Size

    320KB

  • Sample

    220908-yfl32acgam

  • MD5

    7103edc262cb73b94bd77da978ad0313

  • SHA1

    eb2e71fbc36e69d7f60631b889ce4a389f8b92c6

  • SHA256

    dcd72e70333a95c4c07bf37b53686b7121543d0994b7357c54c1c917072daef9

  • SHA512

    1917c41802430d85ca29a6e801395ed157e1f72264eceef38c0a0a296ac54adc4f92bf0ec282156ad4b355afdb73f9647632f1e123ff7bec3b5c56507a1450b5

  • SSDEEP

    3072:lbRXn2p4B/51pzVyqZ5iQ88ZJmj3h2OdyC9aNhw3cvo2bDi5fBbHHD+FtW89:lb9+g/pzVwQ82Jm7h2As36CtaJHjN89

Malware Config

Targets

    • Target

      7103edc262cb73b94bd77da978ad0313

    • Size

      320KB

    • MD5

      7103edc262cb73b94bd77da978ad0313

    • SHA1

      eb2e71fbc36e69d7f60631b889ce4a389f8b92c6

    • SHA256

      dcd72e70333a95c4c07bf37b53686b7121543d0994b7357c54c1c917072daef9

    • SHA512

      1917c41802430d85ca29a6e801395ed157e1f72264eceef38c0a0a296ac54adc4f92bf0ec282156ad4b355afdb73f9647632f1e123ff7bec3b5c56507a1450b5

    • SSDEEP

      3072:lbRXn2p4B/51pzVyqZ5iQ88ZJmj3h2OdyC9aNhw3cvo2bDi5fBbHHD+FtW89:lb9+g/pzVwQ82Jm7h2As36CtaJHjN89

    • GandCrab payload

    • Gandcrab

      Gandcrab is a Trojan horse that encrypts files on a computer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v6

Tasks