b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

b180f13d74...44.exe

windows7-x64

8

b180f13d74...44.exe

windows10-2004-x64

8

Sharing

General

Target

b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44.exe
Size

347KB
Sample

220919-lz275sfegr
MD5

94fd65c600ed754dcff53bf9c62672a0
SHA1

fa81cfa9b4f33fdc3eca248b0b445455b5c1d5d7
SHA256

b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44
SHA512

848d80e1ee5dcc3a9132ac02fb51fa54c206744880fe04acbde448c4b318ab14076c81e37da5de44c57ca63e7de15622d331075d1a6209b4993e84d2c4359905
SSDEEP

6144:HC5gqTN71xWDD7k0SIufIi9caMvb4lQMKLjP1REVhPMdELungetN:H2N7u/7ZuQi9WvUaMKLTYvAltN

Score

8^/10

ransomware

Static task

static1

Behavioral task

behavioral1

Sample

b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44.exe

Resource

win7-20220901-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44.exe
- Size
  
  347KB
- MD5
  
  94fd65c600ed754dcff53bf9c62672a0
- SHA1
  
  fa81cfa9b4f33fdc3eca248b0b445455b5c1d5d7
- SHA256
  
  b180f13d745f4b2dc2601ad87eddf9c6f5de1c91a489bc85884d3c7a9e0b1a44
- SHA512
  
  848d80e1ee5dcc3a9132ac02fb51fa54c206744880fe04acbde448c4b318ab14076c81e37da5de44c57ca63e7de15622d331075d1a6209b4993e84d2c4359905
- SSDEEP
  
  6144:HC5gqTN71xWDD7k0SIufIi9caMvb4lQMKLjP1REVhPMdELungetN:H2N7u/7ZuQi9WvUaMKLTYvAltN
Score

8^/10

ransomware
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy