Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9
-
Size
45KB
-
Sample
240609-ajh9jsaf4y
-
MD5
963d5f40ecbfb2d8366b9a6add324416
-
SHA1
0837e1a2ac7476a31a4d059e03dc9514e272b860
-
SHA256
5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9
-
SHA512
00b82d08434ed8f7bb701b0933efd7159ed9288c348dd2b52e5e1779fbbc1c0b9ee35d88a9903cb4609059f416d967d98172d8bb0a4e2e4c4d38625b93a944c8
-
SSDEEP
768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzb:CTWn1++PJHJXA/OsIZfzc3/Q8zxEU
Behavioral task
behavioral1
Sample
5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9
-
Size
45KB
-
MD5
963d5f40ecbfb2d8366b9a6add324416
-
SHA1
0837e1a2ac7476a31a4d059e03dc9514e272b860
-
SHA256
5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9
-
SHA512
00b82d08434ed8f7bb701b0933efd7159ed9288c348dd2b52e5e1779fbbc1c0b9ee35d88a9903cb4609059f416d967d98172d8bb0a4e2e4c4d38625b93a944c8
-
SSDEEP
768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzb:CTWn1++PJHJXA/OsIZfzc3/Q8zxEU
Score9/10-
Renames multiple (3786) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
UPX dump on OEP (original entry point)
-