Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
DonnyhubPremium.exe
-
Size
722KB
-
Sample
240530-anjqwagd94
-
MD5
34e3ccf886e1321131be0ea9e28d16ac
-
SHA1
545343c4298a6fa9a8e4350be6b0ef1dedfeafe0
-
SHA256
f56f8f938febb9ebade541493d3c9ea9bf64dfa78597e2ec9dba545e9afb1578
-
SHA512
ee305fc82b7e2f868a11b585861f239c7d27d149a82a483b2154f71230c4e3e94f26dd10036a2045f1a01b9f265210bbda5a18919a3b38352d729457068ae464
-
SSDEEP
12288:BO7FJJ7gIgVj2du42aCrMP5IaAPD67w9rVad7FtJ7gIDVj2du42a1:U7FJJMPRAu4fC45wu7we7FtJMsRAu4f1
Static task
static1
Behavioral task
behavioral1
Sample
DonnyhubPremium.exe
Resource
win10-20240404-en
Behavioral task
behavioral2
Sample
DonnyhubPremium.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
DonnyhubPremium.exe
-
Size
722KB
-
MD5
34e3ccf886e1321131be0ea9e28d16ac
-
SHA1
545343c4298a6fa9a8e4350be6b0ef1dedfeafe0
-
SHA256
f56f8f938febb9ebade541493d3c9ea9bf64dfa78597e2ec9dba545e9afb1578
-
SHA512
ee305fc82b7e2f868a11b585861f239c7d27d149a82a483b2154f71230c4e3e94f26dd10036a2045f1a01b9f265210bbda5a18919a3b38352d729457068ae464
-
SSDEEP
12288:BO7FJJ7gIgVj2du42aCrMP5IaAPD67w9rVad7FtJ7gIDVj2du42a1:U7FJJMPRAu4fC45wu7we7FtJMsRAu4f1
Score9/10-
Renames multiple (547) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-