100aa5c76f5d80293f95aaf218629a98ddde45ffbb10ab6f3d6879b6439e1147 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

Trojan-Ran...le.exe

windows7-x64

8

Trojan-Ran...le.exe

windows10-2004-x64

8

Sharing

General

Target

Trojan-Ransom.Win32.Birele.foq-100aa5c76f5d80293f95aaf218629a98ddde45ffbb10ab6f3d6879b6439e1147
Size

204KB
Sample

221106-qhlahsfbdk
MD5

37da6617c1d20f41c16725ec44aad0c0
SHA1

07e46de3eda4543c9148d5a0dc4c4e302aaaa0d4
SHA256

100aa5c76f5d80293f95aaf218629a98ddde45ffbb10ab6f3d6879b6439e1147
SHA512

94356418dd9766b82ae887507844235872f499f27d4e81214a0b022a811d8b41215b68fff449405c7f2d33e99d081458b7fd82827cb7b4a616eb709cb68b1968
SSDEEP

6144:OS/ryv8fBS/ryv8fAYdS/ryv8fAYHS/ryv8fAY1:t/rC8fo/rC8fAYk/rC8fAYy/rC8fAY1

Score

8^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

Trojan-Ransom.Win32.Birele.exe

Resource

win7-20220812-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

Trojan-Ransom.Win32.Birele.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  Trojan-Ransom.Win32.Birele.foq-100aa5c76f5d80293f95aaf218629a98ddde45ffbb10ab6f3d6879b6439e1147
- Size
  
  204KB
- MD5
  
  37da6617c1d20f41c16725ec44aad0c0
- SHA1
  
  07e46de3eda4543c9148d5a0dc4c4e302aaaa0d4
- SHA256
  
  100aa5c76f5d80293f95aaf218629a98ddde45ffbb10ab6f3d6879b6439e1147
- SHA512
  
  94356418dd9766b82ae887507844235872f499f27d4e81214a0b022a811d8b41215b68fff449405c7f2d33e99d081458b7fd82827cb7b4a616eb709cb68b1968
- SSDEEP
  
  6144:OS/ryv8fBS/ryv8fAYdS/ryv8fAYHS/ryv8fAY1:t/rC8fo/rC8fAYk/rC8fAYy/rC8fAY1
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy