Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
181s -
max time network
227s -
platform
windows10-2004_x64 -
resource
win10v2004-20221111-en -
resource tags
arch:x64arch:x86image:win10v2004-20221111-enlocale:en-usos:windows10-2004-x64system -
submitted
03/12/2022, 05:40
Static task
static1
Behavioral task
behavioral1
Sample
b345ede20edf8d9d1a4a8458a9c520cf7a28b69f38f05f97fa6cecc7ed6fa66d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b345ede20edf8d9d1a4a8458a9c520cf7a28b69f38f05f97fa6cecc7ed6fa66d.exe
Resource
win10v2004-20221111-en
General
-
Target
b345ede20edf8d9d1a4a8458a9c520cf7a28b69f38f05f97fa6cecc7ed6fa66d.exe
-
Size
3.5MB
-
MD5
a6ec1f6c92edab13b8ff5ea36f23b160
-
SHA1
f598949e8fef80b3a77860622a893ae3c58f4127
-
SHA256
b345ede20edf8d9d1a4a8458a9c520cf7a28b69f38f05f97fa6cecc7ed6fa66d
-
SHA512
57f2f8c4b7a4e4718402dab2f7371fe6e76ac29da2c6e76fde923afbfdab641978a34055a0fbf765ca4bfed9112a1fd95f84e9c4c995bb029180e87d80ae8f61
-
SSDEEP
98304:JD81LjSHXKTaqX6oHaRXrGPlPZTVDlf4L:TKTaYZiIzngL
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.