Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
699aaea1598a034cde7ed88cd8a8a36fd59447e09bddef566357061774c48a76.exe
-
Size
555KB
-
Sample
221130-2gs5hsbc78
-
MD5
6d5b9675b68bac95b885b4bb294134a1
-
SHA1
74dbf463be3139a28d9851b3b80c2ecac3e56304
-
SHA256
699aaea1598a034cde7ed88cd8a8a36fd59447e09bddef566357061774c48a76
-
SHA512
5bc03425855057dd1f7cd9d5b61c3c895eb1ac48401aa4bd807e56560b149aefe1d9f2c7c73225f0e705923e5e2dd2d65490e1ba668dc788852ebc51f63bbe00
-
SSDEEP
12288:SW0nwOZKGC9FGKRTyBQPqPgrSrMGu4fGxzWjQ9dGB3K4d:ShwVGKR+BQPqPgKM2GxzMyGhK4
Malware Config
Targets
-
-
Target
699aaea1598a034cde7ed88cd8a8a36fd59447e09bddef566357061774c48a76.exe
-
Size
555KB
-
MD5
6d5b9675b68bac95b885b4bb294134a1
-
SHA1
74dbf463be3139a28d9851b3b80c2ecac3e56304
-
SHA256
699aaea1598a034cde7ed88cd8a8a36fd59447e09bddef566357061774c48a76
-
SHA512
5bc03425855057dd1f7cd9d5b61c3c895eb1ac48401aa4bd807e56560b149aefe1d9f2c7c73225f0e705923e5e2dd2d65490e1ba668dc788852ebc51f63bbe00
-
SSDEEP
12288:SW0nwOZKGC9FGKRTyBQPqPgrSrMGu4fGxzWjQ9dGB3K4d:ShwVGKR+BQPqPgKM2GxzMyGhK4
Score10/10-
Black Basta
A ransomware family targeting Windows and Linux ESXi first seen in February 2022.
-
Deletes shadow copies
Ransomware often targets backup files to inhibit system recovery.
-
Modifies boot configuration data using bcdedit
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Sets desktop wallpaper using registry
-