Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
195s -
max time network
203s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
01/12/2022, 10:42
Static task
static1
Behavioral task
behavioral1
Sample
798ffd3ac9479390a0db05d616713d76827d45db3ea05b71b4ff97436ae623dc.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
798ffd3ac9479390a0db05d616713d76827d45db3ea05b71b4ff97436ae623dc.exe
Resource
win10v2004-20221111-en
General
-
Target
798ffd3ac9479390a0db05d616713d76827d45db3ea05b71b4ff97436ae623dc.exe
-
Size
2.9MB
-
MD5
4bb879e0dc5dbdb274a4bd6469e07ce6
-
SHA1
8cf7427f0e317cfaa315fb265d6c6c22e53586df
-
SHA256
798ffd3ac9479390a0db05d616713d76827d45db3ea05b71b4ff97436ae623dc
-
SHA512
dcc572df3b01359d44a5000c377e962025339719e34d396f5d210304ca9d286d10dcbefb4020b810fafc9f695cb11f0dfc356135e62f2590b727dbcd72f040ff
-
SSDEEP
49152:Ycy52F1BcT8Jhdk0DR3sTT269x5IoJhsUqhVIiExSJ4vb4MQ5mz:Yc3hjDR8n26h3EVpQH1Qo
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.