Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
150s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20220812-en -
resource tags
arch:x64arch:x86image:win10v2004-20220812-enlocale:en-usos:windows10-2004-x64system -
submitted
03/12/2022, 05:41
Static task
static1
Behavioral task
behavioral1
Sample
ac77dae9cf25bd03515def01c2d0796d11681dbdeee48fb72be3d70f9531cd76.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ac77dae9cf25bd03515def01c2d0796d11681dbdeee48fb72be3d70f9531cd76.exe
Resource
win10v2004-20220812-en
General
-
Target
ac77dae9cf25bd03515def01c2d0796d11681dbdeee48fb72be3d70f9531cd76.exe
-
Size
124KB
-
MD5
7130876807c2a59aece8c9acd7a075e3
-
SHA1
1ffbaabfa2878b1cb30240c8a78f256994e446bd
-
SHA256
ac77dae9cf25bd03515def01c2d0796d11681dbdeee48fb72be3d70f9531cd76
-
SHA512
7fdd2230205d42dc0d03f7c33e08a30c5826fc4e7276058ff10f2815c6f41ed591eb721c9019129d6d79a58f2b7ba181bda21fde9e02abcc70a66960af769398
-
SSDEEP
3072:5x6UW6tpmJQurZyitobo8shKe1GxTiCovitkOyuv7:5xDTyyira5Wu
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.