Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b60cd00c5771506132daf9bc9ed23611c8f673044db8d161ae946593f8afea55

  • Size

    189KB

  • Sample

    240516-cx76yagd5s

  • MD5

    4cbcd7166d591b6067ab36035a6e8604

  • SHA1

    bb29be7a91c0adc290f854f7240db459089ec5fa

  • SHA256

    b60cd00c5771506132daf9bc9ed23611c8f673044db8d161ae946593f8afea55

  • SHA512

    1a5d78e32a6f3989e5546de532a42dea4f84093c8daf0e1f95fe61c5cb58c3ba784cdd5d838d6d2efbd6a3e4a02495e19c66e281b709469a86be93952f30f20d

  • SSDEEP

    3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEF7erWpcOPxPke+e3fFpsJOfFpsJbgEF7R:tFPxPke+eILFPxPke+eI7

Score
9/10

Malware Config

Targets

    • Target

      b60cd00c5771506132daf9bc9ed23611c8f673044db8d161ae946593f8afea55

    • Size

      189KB

    • MD5

      4cbcd7166d591b6067ab36035a6e8604

    • SHA1

      bb29be7a91c0adc290f854f7240db459089ec5fa

    • SHA256

      b60cd00c5771506132daf9bc9ed23611c8f673044db8d161ae946593f8afea55

    • SHA512

      1a5d78e32a6f3989e5546de532a42dea4f84093c8daf0e1f95fe61c5cb58c3ba784cdd5d838d6d2efbd6a3e4a02495e19c66e281b709469a86be93952f30f20d

    • SSDEEP

      3072:6rWpcOPxPke+e3fFpsJOfFpsJbgEF7erWpcOPxPke+e3fFpsJOfFpsJbgEF7R:tFPxPke+eILFPxPke+eI7

    Score
    9/10
    • Renames multiple (4467) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks