Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4d69cb07645bae0a8810ff2806f9a2af14ba1d0d5ea451da9684101eeb2f11c0
-
Size
168KB
-
Sample
240516-1yt8gaaf99
-
MD5
8b8f7619d9c06f6167a8c6ba7dee0580
-
SHA1
61d45145859b4ded93169e88544fc2d2dd649ba1
-
SHA256
4d69cb07645bae0a8810ff2806f9a2af14ba1d0d5ea451da9684101eeb2f11c0
-
SHA512
e9bffd6d740d777cec6bd9f498137587fa7a0187c18c30039da07daeae29ef92a1ab1e0a09c42a5e1a6a62843c663c008494b3ba5f9520099e2e53612a1df52a
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIuE:JiQSo1EZGtKgZGtK/CAIuZAIuE
Behavioral task
behavioral1
Sample
4d69cb07645bae0a8810ff2806f9a2af14ba1d0d5ea451da9684101eeb2f11c0.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
4d69cb07645bae0a8810ff2806f9a2af14ba1d0d5ea451da9684101eeb2f11c0.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
4d69cb07645bae0a8810ff2806f9a2af14ba1d0d5ea451da9684101eeb2f11c0
-
Size
168KB
-
MD5
8b8f7619d9c06f6167a8c6ba7dee0580
-
SHA1
61d45145859b4ded93169e88544fc2d2dd649ba1
-
SHA256
4d69cb07645bae0a8810ff2806f9a2af14ba1d0d5ea451da9684101eeb2f11c0
-
SHA512
e9bffd6d740d777cec6bd9f498137587fa7a0187c18c30039da07daeae29ef92a1ab1e0a09c42a5e1a6a62843c663c008494b3ba5f9520099e2e53612a1df52a
-
SSDEEP
3072:+nyiQSo1EZGtKgZGtK/PgtU1wAIuZAIuE:JiQSo1EZGtKgZGtK/CAIuZAIuE
Score9/10-
Renames multiple (3385) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-