Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
953b31468424ef4209df044f841addd47f5cb0b4fe76740e064a3f593d2e67a5
-
Size
213KB
-
Sample
240312-2z8mxsdc9y
-
MD5
502bd068826349047737e17270b3dbfa
-
SHA1
497903477ccb139f69064c4d444af380f86fe727
-
SHA256
953b31468424ef4209df044f841addd47f5cb0b4fe76740e064a3f593d2e67a5
-
SHA512
b28ae746123c2ac743eca22ffc42f6eaf325f0591c8c1151feed17f8d0db64d9c096c64f258746a2c1ae7babaf6d35896a8396066d966e0914120d0880658f9e
-
SSDEEP
1536:W7ZQpApR5f0hcM0hcD1o8k1o89VJf7ZQpApR5f0hcM0hcD1o8k1o89VJC:6QWpe1o8k1o83JdQWpe1o8k1o83JC
Static task
static1
Behavioral task
behavioral1
Sample
953b31468424ef4209df044f841addd47f5cb0b4fe76740e064a3f593d2e67a5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
953b31468424ef4209df044f841addd47f5cb0b4fe76740e064a3f593d2e67a5.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
953b31468424ef4209df044f841addd47f5cb0b4fe76740e064a3f593d2e67a5
-
Size
213KB
-
MD5
502bd068826349047737e17270b3dbfa
-
SHA1
497903477ccb139f69064c4d444af380f86fe727
-
SHA256
953b31468424ef4209df044f841addd47f5cb0b4fe76740e064a3f593d2e67a5
-
SHA512
b28ae746123c2ac743eca22ffc42f6eaf325f0591c8c1151feed17f8d0db64d9c096c64f258746a2c1ae7babaf6d35896a8396066d966e0914120d0880658f9e
-
SSDEEP
1536:W7ZQpApR5f0hcM0hcD1o8k1o89VJf7ZQpApR5f0hcM0hcD1o8k1o89VJC:6QWpe1o8k1o83JdQWpe1o8k1o83JC
Score9/10-
Renames multiple (604) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-