Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

d55b3d8df1...6e.exe

windows7-x64

9

d55b3d8df1...6e.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d55b3d8df152eae407a3410d4509aff1e064ed3b3b0b1ebc7568997fcee7536e

  • Size

    108KB

  • Sample

    240420-dxmqnsfa85

  • MD5

    ae15b66b57c4e82445e74b83aa38f2cb

  • SHA1

    0a8cbe0d6bf33f7ca0a15dbb731f4aa0aca82037

  • SHA256

    d55b3d8df152eae407a3410d4509aff1e064ed3b3b0b1ebc7568997fcee7536e

  • SHA512

    5f97156db3fa6cfc93a3aeb1827818a3161cba3020f30293ea5f627b2394f4e36421ef5369c33601b11442a0058a808559825825b48eb5e5c782d81dc0739cdd

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfDPw:hfAIuZAIuYSMjoqtMHfhf0

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      d55b3d8df152eae407a3410d4509aff1e064ed3b3b0b1ebc7568997fcee7536e

    • Size

      108KB

    • MD5

      ae15b66b57c4e82445e74b83aa38f2cb

    • SHA1

      0a8cbe0d6bf33f7ca0a15dbb731f4aa0aca82037

    • SHA256

      d55b3d8df152eae407a3410d4509aff1e064ed3b3b0b1ebc7568997fcee7536e

    • SHA512

      5f97156db3fa6cfc93a3aeb1827818a3161cba3020f30293ea5f627b2394f4e36421ef5369c33601b11442a0058a808559825825b48eb5e5c782d81dc0739cdd

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfDPw:hfAIuZAIuYSMjoqtMHfhf0

    Score
    9/10
    ransomwareupx

    • Renames multiple (3434) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks