Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2023-07-12_ca2bbb4f9308c318c952c0660039207c_gandcrab

  • Size

    117KB

  • Sample

    230724-pqktaada57

  • MD5

    ca2bbb4f9308c318c952c0660039207c

  • SHA1

    3fa10fe250ce80f6029a8efc350e857057ab3a04

  • SHA256

    ee72cbd52e4fad0cb57b082e4bf00fb2a5c596a006b5024518160e2a05dd6d90

  • SHA512

    432da17cd0e25540af4be361dc49594e75c04a94c97ebae2b4b285b3d9a632c9989e203959b4afc87ad17b8c2db458d2be749099760161ef4cea1b8410173843

  • SSDEEP

    3072:Ld5BJOoMqqDL2/OvvdHv3uqz3++OAYWgO:LdJODqqDL6gvdHveqi+GWgO

Score
10/10

Malware Config

Targets

    • Target

      2023-07-12_ca2bbb4f9308c318c952c0660039207c_gandcrab

    • Size

      117KB

    • MD5

      ca2bbb4f9308c318c952c0660039207c

    • SHA1

      3fa10fe250ce80f6029a8efc350e857057ab3a04

    • SHA256

      ee72cbd52e4fad0cb57b082e4bf00fb2a5c596a006b5024518160e2a05dd6d90

    • SHA512

      432da17cd0e25540af4be361dc49594e75c04a94c97ebae2b4b285b3d9a632c9989e203959b4afc87ad17b8c2db458d2be749099760161ef4cea1b8410173843

    • SSDEEP

      3072:Ld5BJOoMqqDL2/OvvdHv3uqz3++OAYWgO:LdJODqqDL6gvdHveqi+GWgO

    Score
    6/10
    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks