Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
75b86655daec90575d69353484276137ed6d58f46e315ae9baf59a3627dd0be7
-
Size
271KB
-
Sample
240511-3vnydshf38
-
MD5
ad88df627e1d86b26c62c80d7c857a68
-
SHA1
4efcafe41f49fb8f4ebbcf519182cb1985bf1680
-
SHA256
75b86655daec90575d69353484276137ed6d58f46e315ae9baf59a3627dd0be7
-
SHA512
0f50ee167bebb37043deb6f27eb69eeb506b5a12c19b00424df93f428acbf36c95b93ec04fba21ce873bd9f19e3d8c1b0b49c9dc27457ab32cbca8faae41bc48
-
SSDEEP
768:/7BlpQpARFbh2UM/zX1vqX1v+1WbW1rjrA9ZONZOD5ZTXB85c5cfYfi7BlpQpARj:/7ZQpApUsKiX26S7ZQpApUsKiX26n
Static task
static1
Behavioral task
behavioral1
Sample
75b86655daec90575d69353484276137ed6d58f46e315ae9baf59a3627dd0be7.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
75b86655daec90575d69353484276137ed6d58f46e315ae9baf59a3627dd0be7.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
75b86655daec90575d69353484276137ed6d58f46e315ae9baf59a3627dd0be7
-
Size
271KB
-
MD5
ad88df627e1d86b26c62c80d7c857a68
-
SHA1
4efcafe41f49fb8f4ebbcf519182cb1985bf1680
-
SHA256
75b86655daec90575d69353484276137ed6d58f46e315ae9baf59a3627dd0be7
-
SHA512
0f50ee167bebb37043deb6f27eb69eeb506b5a12c19b00424df93f428acbf36c95b93ec04fba21ce873bd9f19e3d8c1b0b49c9dc27457ab32cbca8faae41bc48
-
SSDEEP
768:/7BlpQpARFbh2UM/zX1vqX1v+1WbW1rjrA9ZONZOD5ZTXB85c5cfYfi7BlpQpARj:/7ZQpApUsKiX26S7ZQpApUsKiX26n
Score9/10-
Renames multiple (3996) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-