Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d17daa2ebe1ec584e79de48e03402cdeaabd9d3b00c65664ba516ea4dde36d27

  • Size

    72KB

  • Sample

    240527-dhhs6seh58

  • MD5

    316c490e6fe6ab493b6398c50cdde555

  • SHA1

    72447f4ac07e51625fad397ddc6da4b0f74bfec8

  • SHA256

    d17daa2ebe1ec584e79de48e03402cdeaabd9d3b00c65664ba516ea4dde36d27

  • SHA512

    6966610e89de9a785d3d91f258f18bf14b697cfc2d8e214041c1b0bca4e88d6f854ef8b16aac8a20105984a3c7f2a33b36880726ebeaa3a00e11ff1a5090e6e1

  • SSDEEP

    1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJJ+T:+nyiQSo2

Score
10/10

Malware Config

Targets

    • Target

      d17daa2ebe1ec584e79de48e03402cdeaabd9d3b00c65664ba516ea4dde36d27

    • Size

      72KB

    • MD5

      316c490e6fe6ab493b6398c50cdde555

    • SHA1

      72447f4ac07e51625fad397ddc6da4b0f74bfec8

    • SHA256

      d17daa2ebe1ec584e79de48e03402cdeaabd9d3b00c65664ba516ea4dde36d27

    • SHA512

      6966610e89de9a785d3d91f258f18bf14b697cfc2d8e214041c1b0bca4e88d6f854ef8b16aac8a20105984a3c7f2a33b36880726ebeaa3a00e11ff1a5090e6e1

    • SSDEEP

      1536:67Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8xJJMJJJ+T:+nyiQSo2

    Score
    9/10
    • Renames multiple (3709) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks