Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

Trojan-Ran...er.exe

windows7-x64

9

Trojan-Ran...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Trojan-Ransom.Win32.Blocker.fipe-9f09d25b2756d813c2e9a1f609504b729cbda76248c0a12061cc15456f56730b

  • Size

    148KB

  • Sample

    221106-zhk47adcel

  • MD5

    73a9ab2ea9ec4eaf45bce88afc7ee87e

  • SHA1

    bb8d963421491d6c20ae6082b383ddeebf3981e4

  • SHA256

    9f09d25b2756d813c2e9a1f609504b729cbda76248c0a12061cc15456f56730b

  • SHA512

    34006fdfd74295850185b1c3daf36220ede5bd171241df9f89474fd74df571fe0d432b7e98abdbf284595d69e661eb148e055ac7ca9b8a1bb37960974311ee0e

  • SSDEEP

    3072:tYcIDc20Qr0AGFDRlt98XSPmLmUQuywCXbx:tYlDcVQQAmlltCXEG8f

Score
9/10
persistenceransomware

Malware Config

Targets

    • Target

      Trojan-Ransom.Win32.Blocker.fipe-9f09d25b2756d813c2e9a1f609504b729cbda76248c0a12061cc15456f56730b

    • Size

      148KB

    • MD5

      73a9ab2ea9ec4eaf45bce88afc7ee87e

    • SHA1

      bb8d963421491d6c20ae6082b383ddeebf3981e4

    • SHA256

      9f09d25b2756d813c2e9a1f609504b729cbda76248c0a12061cc15456f56730b

    • SHA512

      34006fdfd74295850185b1c3daf36220ede5bd171241df9f89474fd74df571fe0d432b7e98abdbf284595d69e661eb148e055ac7ca9b8a1bb37960974311ee0e

    • SSDEEP

      3072:tYcIDc20Qr0AGFDRlt98XSPmLmUQuywCXbx:tYlDcVQQAmlltCXEG8f

    Score
    9/10
    persistenceransomware

    • Deletes shadow copies

      Ransomware often targets backup files to inhibit system recovery.

      ransomware

    • Drops startup file

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks