Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6c9dcee886a76829ffc7deea910e81704d1392754e941b8ed15eeb261b819a0e
-
Size
531KB
-
Sample
240624-2gjk3sydln
-
MD5
f9292e866f948f485c2f83429a7cabfe
-
SHA1
8f552764687ea9fe37574dc225d57f1f4428d873
-
SHA256
6c9dcee886a76829ffc7deea910e81704d1392754e941b8ed15eeb261b819a0e
-
SHA512
273a1431edd366a4d0221f212ba65b834b13b9e22211eca375bb3ecbfcb478c6dde2e62de04d27a4012e461033bd16ee4c7b7429beba576f6e566ae8037ac418
-
SSDEEP
12288:yQthsUsWU9BHmy1dmh1D7QthsUsWU9BHmy1dmh1Dw:yIDU9BHmy1dmh1nIDU9BHmy1dmh1M
Static task
static1
Behavioral task
behavioral1
Sample
6c9dcee886a76829ffc7deea910e81704d1392754e941b8ed15eeb261b819a0e.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
6c9dcee886a76829ffc7deea910e81704d1392754e941b8ed15eeb261b819a0e.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
6c9dcee886a76829ffc7deea910e81704d1392754e941b8ed15eeb261b819a0e
-
Size
531KB
-
MD5
f9292e866f948f485c2f83429a7cabfe
-
SHA1
8f552764687ea9fe37574dc225d57f1f4428d873
-
SHA256
6c9dcee886a76829ffc7deea910e81704d1392754e941b8ed15eeb261b819a0e
-
SHA512
273a1431edd366a4d0221f212ba65b834b13b9e22211eca375bb3ecbfcb478c6dde2e62de04d27a4012e461033bd16ee4c7b7429beba576f6e566ae8037ac418
-
SSDEEP
12288:yQthsUsWU9BHmy1dmh1D7QthsUsWU9BHmy1dmh1Dw:yIDU9BHmy1dmh1nIDU9BHmy1dmh1M
Score9/10-
Renames multiple (3027) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-