Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

88f27c566e...53.exe

windows7-x64

9

88f27c566e...53.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53

  • Size

    198KB

  • Sample

    240411-agt82aab2z

  • MD5

    817807e39c1bfedd8394d318c2478945

  • SHA1

    5e4c7cc38bab29da5614071be7bca264d7804219

  • SHA256

    88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53

  • SHA512

    21110ef537def54bae9199592b48f1dbedb6da2e13047adea7320433754e4f07279b1698991502800e5a783e7bb966e483eb986c22ff57b04943fb6ec06cc1fe

  • SSDEEP

    1536:W7ZQpApjIWe+eoO6O07ZQpApjIWe+eoO6O8:6QWpBe+eoO6O0QWpBe+eoO6O8

Score
9/10
ransomware

Malware Config

Targets

    • Target

      88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53

    • Size

      198KB

    • MD5

      817807e39c1bfedd8394d318c2478945

    • SHA1

      5e4c7cc38bab29da5614071be7bca264d7804219

    • SHA256

      88f27c566e3e13984d3dfb84ad379bfa33819533ee13d6b6c0ab1f127ae9ae53

    • SHA512

      21110ef537def54bae9199592b48f1dbedb6da2e13047adea7320433754e4f07279b1698991502800e5a783e7bb966e483eb986c22ff57b04943fb6ec06cc1fe

    • SSDEEP

      1536:W7ZQpApjIWe+eoO6O07ZQpApjIWe+eoO6O8:6QWpBe+eoO6O0QWpBe+eoO6O8

    Score
    9/10
    ransomware

    • Renames multiple (1569) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks