Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
1795s -
max time network
1587s -
platform
windows10-2004_x64 -
resource
win10v2004-20220901-en -
resource tags
arch:x64arch:x86image:win10v2004-20220901-enlocale:en-usos:windows10-2004-x64system -
submitted
01/11/2022, 19:47
Static task
static1
Behavioral task
behavioral1
Sample
BloodHack.exe
Resource
win10v2004-20220812-en
5 signatures
1800 seconds
Behavioral task
behavioral2
Sample
config.ini
Resource
win10v2004-20220901-en
1 signatures
1800 seconds
General
-
Target
config.ini
-
Size
4KB
-
MD5
b21357500e3e9535ce603039490910ee
-
SHA1
0da51bd27c1225194f72eea6be2d5aef9570b11c
-
SHA256
7b19b9ed15181b651aa0aafd1258969bab90836198f5afd2d2b513c2d754acd5
-
SHA512
0563fc2aff95cd0b9687a9a8846234d45ed9d7db08ff98e490cde8e449183c389717a807b3192eb4894007e352d7b16afa261d779439ccaf92c4cdb1e13b229f
-
SSDEEP
24:DUvKHnyrpH5WhEAO2uDeQEUXLX+Ury7vcTlW2HklgiM84T7Ww7FVQeMoQM4diBOL:DGHchE9PT8U2giM8vw7FKi4wJnMCw
Score
1/10
Malware Config
Signatures
-
Opens file in notepad (likely ransom note) 1 IoCs
pid Process 3548 NOTEPAD.EXE