Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    552155518ce1b108eb1a401bcd994570.bin

  • Size

    157KB

  • Sample

    240620-cjwkzsxcrq

  • MD5

    552155518ce1b108eb1a401bcd994570

  • SHA1

    f76ef0ad924ef9e8193cb76592bdcb05ba4b43e8

  • SHA256

    439bb5a31a36b20ad338a332bd14f0f3d9c5d43211dd892cc5c13cef84495689

  • SHA512

    08765e426a7fbdadb3fd55354681729c141ade7f7a11a70a3df33539b7d3ec64634b3dfe463d3f5e79de78c80d2cea71ba45a4c3f957928a5a2638e85f067fcc

  • SSDEEP

    3072:6e7WpP9oVLQthbYY9oVLQthbUv+e7WpP9oVLQthbYY9oVLQthbUvN:RqA1qAV

Score
9/10

Malware Config

Targets

    • Target

      552155518ce1b108eb1a401bcd994570.bin

    • Size

      157KB

    • MD5

      552155518ce1b108eb1a401bcd994570

    • SHA1

      f76ef0ad924ef9e8193cb76592bdcb05ba4b43e8

    • SHA256

      439bb5a31a36b20ad338a332bd14f0f3d9c5d43211dd892cc5c13cef84495689

    • SHA512

      08765e426a7fbdadb3fd55354681729c141ade7f7a11a70a3df33539b7d3ec64634b3dfe463d3f5e79de78c80d2cea71ba45a4c3f957928a5a2638e85f067fcc

    • SSDEEP

      3072:6e7WpP9oVLQthbYY9oVLQthbUv+e7WpP9oVLQthbYY9oVLQthbUvN:RqA1qAV

    Score
    9/10
    • Renames multiple (3607) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks