Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

o6sa6ka6.exe

windows7-x64

o6sa6ka6.exe

windows10-2004-x64

Resubmissions

18/09/2023, 23:03

230918-21m3lsdb3v 8

18/09/2023, 23:01

230918-2zhfqsfc79 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    o6sa6ka6.EXE

  • Size

    156KB

  • Sample

    230918-21m3lsdb3v

  • MD5

    39cacdf0b3e11aa4cebb0a9cb405f924

  • SHA1

    741e4684c9ef07f8b2a74e428d45250ce51eeec7

  • SHA256

    62e0c21ed2965043017a40d602cefea1b19cd410fa1cb910528ba076bc973848

  • SHA512

    891c0843790a96b4e09b1c2af79007f6d79f56fcbf2794e88673c5ec80c744f30c1c5ea97361d3b0f0a906fd7bde179052841f62488c342000ecce864f9bc51a

  • SSDEEP

    3072:uahKyd2n31U5GWp1icKAArDZz4N9GhbkrNEkB4nEka:uahO0p0yN90QEK

Score
8/10
persistenceransomware

Malware Config

Targets

    • Target

      o6sa6ka6.EXE

    • Size

      156KB

    • MD5

      39cacdf0b3e11aa4cebb0a9cb405f924

    • SHA1

      741e4684c9ef07f8b2a74e428d45250ce51eeec7

    • SHA256

      62e0c21ed2965043017a40d602cefea1b19cd410fa1cb910528ba076bc973848

    • SHA512

      891c0843790a96b4e09b1c2af79007f6d79f56fcbf2794e88673c5ec80c744f30c1c5ea97361d3b0f0a906fd7bde179052841f62488c342000ecce864f9bc51a

    • SSDEEP

      3072:uahKyd2n31U5GWp1icKAArDZz4N9GhbkrNEkB4nEka:uahO0p0yN90QEK

    Score
    8/10
    persistenceransomware

    • Blocklisted process makes network request

    • Adds Run key to start application

      persistence

    • Sets desktop wallpaper using registry

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks