Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3c4faf1677a5c278ed6b34263b59f51124cd3d1195788067970c5bb955e34f6d

  • Size

    517KB

  • Sample

    240610-zx219azfpa

  • MD5

    8914324d93a4f9cb2da1e664f88eb812

  • SHA1

    6f38728cf4f08ff9caa35955ffc2aed73844a969

  • SHA256

    3c4faf1677a5c278ed6b34263b59f51124cd3d1195788067970c5bb955e34f6d

  • SHA512

    b545ffe63dcf5f2c8299778d67219672c67b3f72381f253407f645d8e40070d1b51b19f98c757dfdd7cab3d47bba59393187e1d9597390ab692c62d790c8dd71

  • SSDEEP

    12288:iFF2Z0md3/94A2p8GnqZycIr+VtKzvFWOC3aEX90:iFF2Zx/WnSyhbzv8O0C

Score
9/10

Malware Config

Targets

    • Target

      3c4faf1677a5c278ed6b34263b59f51124cd3d1195788067970c5bb955e34f6d

    • Size

      517KB

    • MD5

      8914324d93a4f9cb2da1e664f88eb812

    • SHA1

      6f38728cf4f08ff9caa35955ffc2aed73844a969

    • SHA256

      3c4faf1677a5c278ed6b34263b59f51124cd3d1195788067970c5bb955e34f6d

    • SHA512

      b545ffe63dcf5f2c8299778d67219672c67b3f72381f253407f645d8e40070d1b51b19f98c757dfdd7cab3d47bba59393187e1d9597390ab692c62d790c8dd71

    • SSDEEP

      12288:iFF2Z0md3/94A2p8GnqZycIr+VtKzvFWOC3aEX90:iFF2Zx/WnSyhbzv8O0C

    Score
    9/10
    • Renames multiple (3696) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks