Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762
-
Size
262KB
-
Sample
240501-ztcl7agd8z
-
MD5
6231ea1da991cb65948d7a9ae2c3656e
-
SHA1
9da27515f6cac74782c06c901c22fe33dc24422c
-
SHA256
443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762
-
SHA512
edad0e519d5a046f1f7ccdf5faebda56fa60eadc3da2007d1187ebb4b94b6251a18aa376df617fcd82aa9a43a35ab4d9067e40b1b1dcb9a512bc85936d1ca83b
-
SSDEEP
3072:+nymCAIuZAIuYSMjoqtMHfhfew9mHpKZNGCLOwstyhZFChcssc56FUrgxvbSD4Ub:JmCAIuZAIuDMVtM/D9UpK7ShcHUaZs
Behavioral task
behavioral1
Sample
443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762
-
Size
262KB
-
MD5
6231ea1da991cb65948d7a9ae2c3656e
-
SHA1
9da27515f6cac74782c06c901c22fe33dc24422c
-
SHA256
443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762
-
SHA512
edad0e519d5a046f1f7ccdf5faebda56fa60eadc3da2007d1187ebb4b94b6251a18aa376df617fcd82aa9a43a35ab4d9067e40b1b1dcb9a512bc85936d1ca83b
-
SSDEEP
3072:+nymCAIuZAIuYSMjoqtMHfhfew9mHpKZNGCLOwstyhZFChcssc56FUrgxvbSD4Ub:JmCAIuZAIuDMVtM/D9UpK7ShcHUaZs
Score9/10-
Renames multiple (2987) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-