Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

61fed1c6d2...AS.exe

windows7-x64

9

61fed1c6d2...AS.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    61fed1c6d28b5f76bd832e0c6e8e5f40_NEAS

  • Size

    313KB

  • Sample

    240507-emx94aca59

  • MD5

    61fed1c6d28b5f76bd832e0c6e8e5f40

  • SHA1

    5f030c5c0de31e500ba2c66bfdb157c0fbd928eb

  • SHA256

    5c811b33dcbf0e17d4180d63fabb6ba084c0ddaca666ae470cab98761ad92393

  • SHA512

    7de5e881b2980569be05f53bf13444ae1e34bc610613f4d64bf392197a00910132eba844949d7e52f7e20b4e60762cb5bd808f0287c035a065d40846c944a09a

  • SSDEEP

    6144:JiQSo1EZGtKgZGtK/CAIuZAIuExQSo1EZGtKgZGtK/CAIuZAIuZ:AQtyZGtKgZGtK/CAIuZAIuExQtyZGtKF

Score
9/10
ransomwareupx

Malware Config

Targets

    • Target

      61fed1c6d28b5f76bd832e0c6e8e5f40_NEAS

    • Size

      313KB

    • MD5

      61fed1c6d28b5f76bd832e0c6e8e5f40

    • SHA1

      5f030c5c0de31e500ba2c66bfdb157c0fbd928eb

    • SHA256

      5c811b33dcbf0e17d4180d63fabb6ba084c0ddaca666ae470cab98761ad92393

    • SHA512

      7de5e881b2980569be05f53bf13444ae1e34bc610613f4d64bf392197a00910132eba844949d7e52f7e20b4e60762cb5bd808f0287c035a065d40846c944a09a

    • SSDEEP

      6144:JiQSo1EZGtKgZGtK/CAIuZAIuExQSo1EZGtKgZGtK/CAIuZAIuZ:AQtyZGtKgZGtK/CAIuZAIuExQtyZGtKF

    Score
    9/10
    ransomwareupx

    • Renames multiple (2850) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks