Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
NEAS.7a6f1f2d7750beffd0aeb898237b9910.exe
-
Size
62KB
-
Sample
231111-tjjpvshg4y
-
MD5
7a6f1f2d7750beffd0aeb898237b9910
-
SHA1
2156461e0b9d837177a26560f370de8a426f1eea
-
SHA256
70140106a0323a9c4ba92d590e0ee31df458bd790ef9c5d1bae79a1c81d7c6cf
-
SHA512
2cf851d3582539abd354743c679649f285292cb112340bdc56bdaef42fe9dfb66e51327a2eb4d49bd615382dd3a17ac5e0a7c6ed23cf1f8c1d1f7decc582620c
-
SSDEEP
768:W7BlpDpARFbhYQkQjjXP/gpPP/gp/7BlpDpARFbhYQkQjj8:W7ZDpApYbWjJ7ZDpApYbWj8
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.7a6f1f2d7750beffd0aeb898237b9910.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
NEAS.7a6f1f2d7750beffd0aeb898237b9910.exe
Resource
win10v2004-20231020-en
Malware Config
Targets
-
-
Target
NEAS.7a6f1f2d7750beffd0aeb898237b9910.exe
-
Size
62KB
-
MD5
7a6f1f2d7750beffd0aeb898237b9910
-
SHA1
2156461e0b9d837177a26560f370de8a426f1eea
-
SHA256
70140106a0323a9c4ba92d590e0ee31df458bd790ef9c5d1bae79a1c81d7c6cf
-
SHA512
2cf851d3582539abd354743c679649f285292cb112340bdc56bdaef42fe9dfb66e51327a2eb4d49bd615382dd3a17ac5e0a7c6ed23cf1f8c1d1f7decc582620c
-
SSDEEP
768:W7BlpDpARFbhYQkQjjXP/gpPP/gp/7BlpDpARFbhYQkQjj8:W7ZDpApYbWjJ7ZDpApYbWj8
Score9/10-
Renames multiple (2851) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Renames multiple (608) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-