Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

71f460d3e7...39.exe

windows7-x64

9

71f460d3e7...39.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    71f460d3e77c170fd2ccb8f7c038a4923e0f4445c5c064583bef99f29c2a2039

  • Size

    70KB

  • Sample

    240525-3aaj9seb41

  • MD5

    24d72afe3a6e66698b0bf805b43a24b4

  • SHA1

    1a03a2363c3f6274baf3b7e899b58e560eca1944

  • SHA256

    71f460d3e77c170fd2ccb8f7c038a4923e0f4445c5c064583bef99f29c2a2039

  • SHA512

    636ea194cd63e4a53ededf82c272291988707d414500302d62bcff4ebae01931dd89362a6759d423aae5e9de737dc00fa63435235acf36a7483e75f4839eda45

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsXaU5:fnyiQSohsUsB

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      71f460d3e77c170fd2ccb8f7c038a4923e0f4445c5c064583bef99f29c2a2039

    • Size

      70KB

    • MD5

      24d72afe3a6e66698b0bf805b43a24b4

    • SHA1

      1a03a2363c3f6274baf3b7e899b58e560eca1944

    • SHA256

      71f460d3e77c170fd2ccb8f7c038a4923e0f4445c5c064583bef99f29c2a2039

    • SHA512

      636ea194cd63e4a53ededf82c272291988707d414500302d62bcff4ebae01931dd89362a6759d423aae5e9de737dc00fa63435235acf36a7483e75f4839eda45

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8asUsXaU5:fnyiQSohsUsB

    Score
    9/10
    ransomwareupx

    • Renames multiple (738) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks