Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9

  • Size

    45KB

  • Sample

    240609-ajh9jsaf4y

  • MD5

    963d5f40ecbfb2d8366b9a6add324416

  • SHA1

    0837e1a2ac7476a31a4d059e03dc9514e272b860

  • SHA256

    5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9

  • SHA512

    00b82d08434ed8f7bb701b0933efd7159ed9288c348dd2b52e5e1779fbbc1c0b9ee35d88a9903cb4609059f416d967d98172d8bb0a4e2e4c4d38625b93a944c8

  • SSDEEP

    768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzb:CTWn1++PJHJXA/OsIZfzc3/Q8zxEU

Score
10/10

Malware Config

Targets

    • Target

      5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9

    • Size

      45KB

    • MD5

      963d5f40ecbfb2d8366b9a6add324416

    • SHA1

      0837e1a2ac7476a31a4d059e03dc9514e272b860

    • SHA256

      5b6c90d4218efbcff1ed4dc63009176540db06d5acd21ee538d8216a162aa3a9

    • SHA512

      00b82d08434ed8f7bb701b0933efd7159ed9288c348dd2b52e5e1779fbbc1c0b9ee35d88a9903cb4609059f416d967d98172d8bb0a4e2e4c4d38625b93a944c8

    • SSDEEP

      768:kBT37CPKKIm0CAbLg++PJHJzIWD+dVdCYgck5sIZFlzc3/Sg2aDM9uA9DM9uAFzb:CTWn1++PJHJXA/OsIZfzc3/Q8zxEU

    Score
    9/10
    • Renames multiple (3786) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks