Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a2014995e9ce67664623cfa9ec11f70e_NEAS

  • Size

    123KB

  • Sample

    240508-t1rrssfh48

  • MD5

    a2014995e9ce67664623cfa9ec11f70e

  • SHA1

    f130d190cd24c79f83b27eb19f4719a045a9447f

  • SHA256

    371eaec82f354d321ab0db31270579d060cd4197545c664e06fd2d3df187d1fc

  • SHA512

    0cec964c5a4d6947527e797159ae070a0509e032f0939340d7a45680ea7fa2a07f4925c9fe717290757aff10920d4f03808c1ab44a88090a7c1be6596bea381b

  • SSDEEP

    1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC9:+nymCAIuZAIuYSMjoqtMHfhf7H0WH07

Score
9/10

Malware Config

Targets

    • Target

      a2014995e9ce67664623cfa9ec11f70e_NEAS

    • Size

      123KB

    • MD5

      a2014995e9ce67664623cfa9ec11f70e

    • SHA1

      f130d190cd24c79f83b27eb19f4719a045a9447f

    • SHA256

      371eaec82f354d321ab0db31270579d060cd4197545c664e06fd2d3df187d1fc

    • SHA512

      0cec964c5a4d6947527e797159ae070a0509e032f0939340d7a45680ea7fa2a07f4925c9fe717290757aff10920d4f03808c1ab44a88090a7c1be6596bea381b

    • SSDEEP

      1536:67Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC9:+nymCAIuZAIuYSMjoqtMHfhf7H0WH07

    Score
    9/10
    • Renames multiple (3435) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks