Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.5b83e0964251410fa730051e3c5fdda0.exe

  • Size

    163KB

  • Sample

    231101-edz3bsca44

  • MD5

    5b83e0964251410fa730051e3c5fdda0

  • SHA1

    4cdc2a561af74bfcd1bad18f7cd7fc399afad467

  • SHA256

    ddb2653400d36e32157171911b98bde74cffec64b6029172bea2bb5c94363cbf

  • SHA512

    5a1b0ba2125543dd12b31859660be9321e54c29e886968b96c0e50daf791d67b7533045bb5c29ba97b066a7bc49eb77e11c46c89c4e06da21508952ce2e25b38

  • SSDEEP

    3072:6e7WpHIyRF9ESWu0SWuDmSXrw3Mtr0srI798Qr:RqlIyFESWu0SWu2sG98Qr

Score
9/10

Malware Config

Targets

    • Target

      NEAS.5b83e0964251410fa730051e3c5fdda0.exe

    • Size

      163KB

    • MD5

      5b83e0964251410fa730051e3c5fdda0

    • SHA1

      4cdc2a561af74bfcd1bad18f7cd7fc399afad467

    • SHA256

      ddb2653400d36e32157171911b98bde74cffec64b6029172bea2bb5c94363cbf

    • SHA512

      5a1b0ba2125543dd12b31859660be9321e54c29e886968b96c0e50daf791d67b7533045bb5c29ba97b066a7bc49eb77e11c46c89c4e06da21508952ce2e25b38

    • SSDEEP

      3072:6e7WpHIyRF9ESWu0SWuDmSXrw3Mtr0srI798Qr:RqlIyFESWu0SWu2sG98Qr

    Score
    9/10
    • Renames multiple (325) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Renames multiple (422) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

MITRE ATT&CK Matrix

Tasks