Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dc56a30c0082145ad5639de443732e55dd895a5f0254644d1b1ec1b9457f04ff.zip
-
Size
555KB
-
Sample
221103-k3a3dsgeg9
-
MD5
cddf2c9ac528b27af98da74dcb8d6ea0
-
SHA1
b4c5c1e0690fdb1fc8abec8abcec8633d6d5c2bb
-
SHA256
dc56a30c0082145ad5639de443732e55dd895a5f0254644d1b1ec1b9457f04ff
-
SHA512
efe24d0fb0cde3dc5e4a43f2d9823a04742723b48929005f54360285861abaa15bb8b6f5dc0d08478a6eee05487a975c16a2afb9bf3a64a9633ec4835c6b66c8
-
SSDEEP
12288:aW0nwOZKGC9FGKRTyBQPqPgrSrMGu4fGxzWjQ9dGB3K4dK:ahwVGKR+BQPqPgKM2GxzMyGhK4M
Malware Config
Targets
-
-
Target
699aaea1598a034cde7ed88cd8a8a36fd59447e09bddef566357061774c48a76.exe
-
Size
555KB
-
MD5
6d5b9675b68bac95b885b4bb294134a1
-
SHA1
74dbf463be3139a28d9851b3b80c2ecac3e56304
-
SHA256
699aaea1598a034cde7ed88cd8a8a36fd59447e09bddef566357061774c48a76
-
SHA512
5bc03425855057dd1f7cd9d5b61c3c895eb1ac48401aa4bd807e56560b149aefe1d9f2c7c73225f0e705923e5e2dd2d65490e1ba668dc788852ebc51f63bbe00
-
SSDEEP
12288:SW0nwOZKGC9FGKRTyBQPqPgrSrMGu4fGxzWjQ9dGB3K4d:ShwVGKR+BQPqPgKM2GxzMyGhK4
Score10/10-
Black Basta
A ransomware family targeting Windows and Linux ESXi first seen in February 2022.
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Modifies boot configuration data using bcdedit
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Sets desktop wallpaper using registry
-