fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

fd02b054a9...65.exe

windows7-x64

9

fd02b054a9...65.exe

windows10-2004-x64

9

Sharing

General

Target

fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65
Size

63KB
Sample

240406-fndgrabh94
MD5

3738cf87611e54ab2ca6a04e707fa93d
SHA1

5784fe68e5cd5b362b5e19bf30c870aaadf4cc67
SHA256

fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65
SHA512

71440e0a680398399caf21bc3a81a14fcfe65c6cded1bf37a22c9ccd665ee92b4fc45b9389dabfa6b36a4d5ee3d88df9878ed40c005b5443eab09404d88c3c74
SSDEEP

1536:W7ZhA7pApH1d9oVLQthbqbY9oVLQthbq51Rn67jT:6e7WpP9oVLQthbYY9oVLQthbUG

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65.exe

Resource

win7-20231129-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65
- Size
  
  63KB
- MD5
  
  3738cf87611e54ab2ca6a04e707fa93d
- SHA1
  
  5784fe68e5cd5b362b5e19bf30c870aaadf4cc67
- SHA256
  
  fd02b054a99e838255035d34dcc6edff62a66c86f298a9c19a6189a67362bb65
- SHA512
  
  71440e0a680398399caf21bc3a81a14fcfe65c6cded1bf37a22c9ccd665ee92b4fc45b9389dabfa6b36a4d5ee3d88df9878ed40c005b5443eab09404d88c3c74
- SSDEEP
  
  1536:W7ZhA7pApH1d9oVLQthbqbY9oVLQthbq51Rn67jT:6e7WpP9oVLQthbYY9oVLQthbUG
Score

9^/10

ransomware
- Renames multiple (3573) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy