Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

127c5e93ee...ad.exe

windows7-x64

9

127c5e93ee...ad.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    127c5e93ee0bff6c2cec5ffc222dc6a5c233edfe3bf68e6d1f797689265024ad

  • Size

    134KB

  • Sample

    240419-xf2ytadc6v

  • MD5

    3600131e2c712af5b04dea74c972927e

  • SHA1

    4a127dd626ad61075fdde04418c5a8f2baa1491b

  • SHA256

    127c5e93ee0bff6c2cec5ffc222dc6a5c233edfe3bf68e6d1f797689265024ad

  • SHA512

    eff8766a36ba271b6102d536767e0a20d0a57d51d4e1f589f43b44f2fa7ec0667935bbf7b080fcc0d2a1b11a59e276339cd2878962f9c557acc17d564a804b86

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC4:+nymCAIuZAIuYSMjoqtMHfhfqnXwXwS

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      127c5e93ee0bff6c2cec5ffc222dc6a5c233edfe3bf68e6d1f797689265024ad

    • Size

      134KB

    • MD5

      3600131e2c712af5b04dea74c972927e

    • SHA1

      4a127dd626ad61075fdde04418c5a8f2baa1491b

    • SHA256

      127c5e93ee0bff6c2cec5ffc222dc6a5c233edfe3bf68e6d1f797689265024ad

    • SHA512

      eff8766a36ba271b6102d536767e0a20d0a57d51d4e1f589f43b44f2fa7ec0667935bbf7b080fcc0d2a1b11a59e276339cd2878962f9c557acc17d564a804b86

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC4:+nymCAIuZAIuYSMjoqtMHfhfqnXwXwS

    Score
    9/10
    ransomwareupx

    • Renames multiple (3425) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks