Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    114s
  • max time network
    135s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    31/12/2023, 13:35

General

  • Target

    f310f134416bf943b5c0e0ba69bdf999.exe

  • Size

    82KB

  • MD5

    f310f134416bf943b5c0e0ba69bdf999

  • SHA1

    dc36c06540b0219ef9a10090d3e19474b7bf00e4

  • SHA256

    1bf43da21dbf81a7cddcc352c18f0601a1d86d594ae392c3c3718aabde114c92

  • SHA512

    78ebda6a700e2e96cdf4389ae8394748edf878f644ad0ada26aa855d54b138b4f064f72d93281a529d3a23d66078825402e3cc434d0accb5fe3ad5eb4d3f471a

  • SSDEEP

    1536:W7Z2sspApkZrZnZrZHZrZ1iqktYtlXGkR2SfXGkR2StJls:62ssWpQXGkR2SfXGkR2StJls

Score
9/10

Malware Config

Signatures

  • Renames multiple (147) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

  • Drops file in Program Files directory 63 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f310f134416bf943b5c0e0ba69bdf999.exe
    "C:\Users\Admin\AppData\Local\Temp\f310f134416bf943b5c0e0ba69bdf999.exe"
    1⤵
    • Drops file in Program Files directory
    PID:2248

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads