Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

c86277b0f4...61.exe

windows7-x64

9

c86277b0f4...61.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c86277b0f432cfa8ef56e07a6c1ea7f4872d5fa1b2ff417a7d6feedf867eba61

  • Size

    103KB

  • Sample

    240521-elz3ashb5w

  • MD5

    e2d01fdff3134be581bdf24b4416a414

  • SHA1

    accf13225735862a98040b6b506e46e0e5e67891

  • SHA256

    c86277b0f432cfa8ef56e07a6c1ea7f4872d5fa1b2ff417a7d6feedf867eba61

  • SHA512

    08576fc4e4b343c180f29e12c916068eb3ea8baf9c7b9b6a9923798bdb74004d768e7958a1956eaa1b7eba1b04aed35e189d02149af504489a8adebd435a0d63

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xW:hfAIuZAIuYSMjoqtMHfhfH

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      c86277b0f432cfa8ef56e07a6c1ea7f4872d5fa1b2ff417a7d6feedf867eba61

    • Size

      103KB

    • MD5

      e2d01fdff3134be581bdf24b4416a414

    • SHA1

      accf13225735862a98040b6b506e46e0e5e67891

    • SHA256

      c86277b0f432cfa8ef56e07a6c1ea7f4872d5fa1b2ff417a7d6feedf867eba61

    • SHA512

      08576fc4e4b343c180f29e12c916068eb3ea8baf9c7b9b6a9923798bdb74004d768e7958a1956eaa1b7eba1b04aed35e189d02149af504489a8adebd435a0d63

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hf0xW:hfAIuZAIuYSMjoqtMHfhfH

    Score
    9/10
    ransomwareupx

    • Renames multiple (3478) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks