Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

9364194f2f...51.exe

windows7-x64

9

9364194f2f...51.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9364194f2f5a01d3a465abbaa851c06966919f3da8e28184caadd949acf22f51

  • Size

    61KB

  • Sample

    240505-cgbg2abb4y

  • MD5

    6e6dc34e7f5c5b888538e0c2a0975733

  • SHA1

    2e617c436517a26b4dc2c3b8643dc3918d355b76

  • SHA256

    9364194f2f5a01d3a465abbaa851c06966919f3da8e28184caadd949acf22f51

  • SHA512

    02f4144e3278c8287de980c243fba0fff04b003c3b9c662b53830f470829a9a99737cd78710ad909c5b544aeb87c9f7c851ea52242e62d12f6d6cd05e84890e4

  • SSDEEP

    768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sw:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/QE

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      9364194f2f5a01d3a465abbaa851c06966919f3da8e28184caadd949acf22f51

    • Size

      61KB

    • MD5

      6e6dc34e7f5c5b888538e0c2a0975733

    • SHA1

      2e617c436517a26b4dc2c3b8643dc3918d355b76

    • SHA256

      9364194f2f5a01d3a465abbaa851c06966919f3da8e28184caadd949acf22f51

    • SHA512

      02f4144e3278c8287de980c243fba0fff04b003c3b9c662b53830f470829a9a99737cd78710ad909c5b544aeb87c9f7c851ea52242e62d12f6d6cd05e84890e4

    • SSDEEP

      768:67Blpf/FAK65euBT37CPKK0SjHm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sw:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/QE

    Score
    9/10
    ransomwareupx

    • Renames multiple (3761) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks