Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

6f6838f937...0e.exe

windows7-x64

9

6f6838f937...0e.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f6838f937291e9f45d01f6cb596ce36b19ea76c8a73789ba6a07357f905130e

  • Size

    131KB

  • Sample

    240619-23f23szhjm

  • MD5

    042ccc915a3c8b0c960bfec7bc3ed746

  • SHA1

    d25dec2836b1a0d1dbbad1989c2dd8df9ca4746b

  • SHA256

    6f6838f937291e9f45d01f6cb596ce36b19ea76c8a73789ba6a07357f905130e

  • SHA512

    348331478c09cd0eff0c67973e5b556723c4a1ecc9827d937ecf7d28694eced969b8e1981a9dbe3deafb3808447a9d236e6291d370550f46e3e04c71d0216fed

  • SSDEEP

    1536:W7ZppApHil63SGcqLKLl7ZppApHil63SGcqLKL04l:6pWpHil63SULKLvpWpHil63SULKLn

Score
9/10
ransomware

Malware Config

Targets

    • Target

      6f6838f937291e9f45d01f6cb596ce36b19ea76c8a73789ba6a07357f905130e

    • Size

      131KB

    • MD5

      042ccc915a3c8b0c960bfec7bc3ed746

    • SHA1

      d25dec2836b1a0d1dbbad1989c2dd8df9ca4746b

    • SHA256

      6f6838f937291e9f45d01f6cb596ce36b19ea76c8a73789ba6a07357f905130e

    • SHA512

      348331478c09cd0eff0c67973e5b556723c4a1ecc9827d937ecf7d28694eced969b8e1981a9dbe3deafb3808447a9d236e6291d370550f46e3e04c71d0216fed

    • SSDEEP

      1536:W7ZppApHil63SGcqLKLl7ZppApHil63SGcqLKL04l:6pWpHil63SULKLvpWpHil63SULKLn

    Score
    9/10
    ransomware

    • Renames multiple (4645) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks