Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

8a96073edb...c0.exe

windows7-x64

9

8a96073edb...c0.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8a96073edbbba66969f2e66d57708b6f578dc4320776ba3146429a4d820bacc0

  • Size

    160KB

  • Sample

    240201-gdhjdseeaj

  • MD5

    ab20272983a9e444b35d837c5dd645cd

  • SHA1

    95205dffdef4bfcbdef38ed50e7a53f3a78920d3

  • SHA256

    9aeb69c42ce206ec44b1d40653668b84869202c491c2011eef8d852dd76b866a

  • SHA512

    e79361b2ee2ae183b77a33bde1e9d4a59e003f6c2d5859d31ac7183beff16de82d6fda6cfef9ca5b3a775dca2d7a406c5dfab8858e9b4da60d01ea86c8ac8727

  • SSDEEP

    3072:yFB3O3IRORghwODMJlz1dxoOXwupf/vsSQl7PnZ0rJM81SDRHKpfKaCpZ7l:0BZcIDqvysbpfBQtnZ0r5pA

Score
10/10
discoveryupx

Malware Config

Targets

    • Target

      8a96073edbbba66969f2e66d57708b6f578dc4320776ba3146429a4d820bacc0

    • Size

      160KB

    • MD5

      ab20272983a9e444b35d837c5dd645cd

    • SHA1

      95205dffdef4bfcbdef38ed50e7a53f3a78920d3

    • SHA256

      9aeb69c42ce206ec44b1d40653668b84869202c491c2011eef8d852dd76b866a

    • SHA512

      e79361b2ee2ae183b77a33bde1e9d4a59e003f6c2d5859d31ac7183beff16de82d6fda6cfef9ca5b3a775dca2d7a406c5dfab8858e9b4da60d01ea86c8ac8727

    • SSDEEP

      3072:yFB3O3IRORghwODMJlz1dxoOXwupf/vsSQl7PnZ0rJM81SDRHKpfKaCpZ7l:0BZcIDqvysbpfBQtnZ0r5pA

    Score
    9/10
    upxdiscovery

    • Detects command variations typically used by ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks