Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53
-
Size
198KB
-
Sample
240411-agt82aab2z
-
MD5
817807e39c1bfedd8394d318c2478945
-
SHA1
5e4c7cc38bab29da5614071be7bca264d7804219
-
SHA256
88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53
-
SHA512
21110ef537def54bae9199592b48f1dbedb6da2e13047adea7320433754e4f07279b1698991502800e5a783e7bb966e483eb986c22ff57b04943fb6ec06cc1fe
-
SSDEEP
1536:W7ZQpApjIWe+eoO6O07ZQpApjIWe+eoO6O8:6QWpBe+eoO6O0QWpBe+eoO6O8
Static task
static1
Behavioral task
behavioral1
Sample
88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53
-
Size
198KB
-
MD5
817807e39c1bfedd8394d318c2478945
-
SHA1
5e4c7cc38bab29da5614071be7bca264d7804219
-
SHA256
88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53
-
SHA512
21110ef537def54bae9199592b48f1dbedb6da2e13047adea7320433754e4f07279b1698991502800e5a783e7bb966e483eb986c22ff57b04943fb6ec06cc1fe
-
SSDEEP
1536:W7ZQpApjIWe+eoO6O07ZQpApjIWe+eoO6O8:6QWpBe+eoO6O0QWpBe+eoO6O8
Score9/10-
Renames multiple (1569) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-