Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

RansomWar.exe

windows7-x64

6

RansomWar.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    RansomWar.exe

  • Size

    76KB

  • Sample

    230110-mwdk2sbd81

  • MD5

    d78ab7014e03e0afbdfbaf134c8d3875

  • SHA1

    96de3ca62e9642de3745ef66deeee2a53cd816d1

  • SHA256

    9f26a2882657a85085c3182bc6aab2fa6a21c0cb65b8df0357ce53932ea60073

  • SHA512

    57d0c5866af56c9eaed22ecb72fd205f5f98529081afd815f29d6acd592afd5ca3a4baa7bcf87945374d2622902ad8173bf3d121c09c50836bd8a7b87c39982f

  • SSDEEP

    1536:yAkSIijLaiseJBseU6oxkaFycpPP3lLuBZnaMh0nE7ZIn+1y:yAF5qiLJBseU6kkaFDl3lUaMh0nElZ1y

Score
6/10

Malware Config

Targets

    • Target

      RansomWar.exe

    • Size

      76KB

    • MD5

      d78ab7014e03e0afbdfbaf134c8d3875

    • SHA1

      96de3ca62e9642de3745ef66deeee2a53cd816d1

    • SHA256

      9f26a2882657a85085c3182bc6aab2fa6a21c0cb65b8df0357ce53932ea60073

    • SHA512

      57d0c5866af56c9eaed22ecb72fd205f5f98529081afd815f29d6acd592afd5ca3a4baa7bcf87945374d2622902ad8173bf3d121c09c50836bd8a7b87c39982f

    • SSDEEP

      1536:yAkSIijLaiseJBseU6oxkaFycpPP3lLuBZnaMh0nE7ZIn+1y:yAF5qiLJBseU6kkaFDl3lUaMh0nElZ1y

    Score
    6/10

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.