Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

67ab2d61dc...a4.exe

windows7-x64

9

67ab2d61dc...a4.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    67ab2d61dcf5e7de7ea098fb4a9e17e82cadff490e8c61bc7450162ca29eb4a4

  • Size

    138KB

  • Sample

    240610-qbrhyswepf

  • MD5

    5ec2ca34485f0ee837c82fd0b17226b1

  • SHA1

    022beb9d53f784b3f38cc72df9ef0ef5f929c9e3

  • SHA256

    67ab2d61dcf5e7de7ea098fb4a9e17e82cadff490e8c61bc7450162ca29eb4a4

  • SHA512

    3ae1b4a3cc1f42c255b664d39c953c40ccf04b20c9f48046540ee7ca8b5d8715c4c928d1e9581480b35bea968dde66a23b07b71125e2a40643bfabbb9639fd13

  • SSDEEP

    1536:V7Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC1:fnymCAIuZAIuYSMjoqtMHfhflixi8

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      67ab2d61dcf5e7de7ea098fb4a9e17e82cadff490e8c61bc7450162ca29eb4a4

    • Size

      138KB

    • MD5

      5ec2ca34485f0ee837c82fd0b17226b1

    • SHA1

      022beb9d53f784b3f38cc72df9ef0ef5f929c9e3

    • SHA256

      67ab2d61dcf5e7de7ea098fb4a9e17e82cadff490e8c61bc7450162ca29eb4a4

    • SHA512

      3ae1b4a3cc1f42c255b664d39c953c40ccf04b20c9f48046540ee7ca8b5d8715c4c928d1e9581480b35bea968dde66a23b07b71125e2a40643bfabbb9639fd13

    • SSDEEP

      1536:V7Zf/FAlsM1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSC1:fnymCAIuZAIuYSMjoqtMHfhflixi8

    Score
    9/10
    ransomwareupx

    • Renames multiple (3083) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks