Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

443398db06...62.exe

windows7-x64

9

443398db06...62.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762

  • Size

    262KB

  • Sample

    240501-ztcl7agd8z

  • MD5

    6231ea1da991cb65948d7a9ae2c3656e

  • SHA1

    9da27515f6cac74782c06c901c22fe33dc24422c

  • SHA256

    443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762

  • SHA512

    edad0e519d5a046f1f7ccdf5faebda56fa60eadc3da2007d1187ebb4b94b6251a18aa376df617fcd82aa9a43a35ab4d9067e40b1b1dcb9a512bc85936d1ca83b

  • SSDEEP

    3072:+nymCAIuZAIuYSMjoqtMHfhfew9mHpKZNGCLOwstyhZFChcssc56FUrgxvbSD4Ub:JmCAIuZAIuDMVtM/D9UpK7ShcHUaZs

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762

    • Size

      262KB

    • MD5

      6231ea1da991cb65948d7a9ae2c3656e

    • SHA1

      9da27515f6cac74782c06c901c22fe33dc24422c

    • SHA256

      443398db06a4017010e37aa7b3d2c9ec99150647c60a80ed867aca53666b1762

    • SHA512

      edad0e519d5a046f1f7ccdf5faebda56fa60eadc3da2007d1187ebb4b94b6251a18aa376df617fcd82aa9a43a35ab4d9067e40b1b1dcb9a512bc85936d1ca83b

    • SSDEEP

      3072:+nymCAIuZAIuYSMjoqtMHfhfew9mHpKZNGCLOwstyhZFChcssc56FUrgxvbSD4Ub:JmCAIuZAIuDMVtM/D9UpK7ShcHUaZs

    Score
    9/10
    ransomwareupx

    • Renames multiple (2987) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks