Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    38048c45ff746bf8515a88ef69bc245873694d88ef6df5e8a921bd360d5e6f3c.exe

  • Size

    196KB

  • Sample

    240703-eqbkha1bkr

  • MD5

    d168b8725b4839102a68d43cd3611aa0

  • SHA1

    84cc88090bda2f0280b399b4f16cd1bc34d7eff6

  • SHA256

    38048c45ff746bf8515a88ef69bc245873694d88ef6df5e8a921bd360d5e6f3c

  • SHA512

    72608801ebd16a805e60e7ae638ce71e1622b2abbfa941148adc2dc316979d751abfc4205e31c12dc8bdffbac651049c2904e48d68a971a24e50cd24b744107e

  • SSDEEP

    3072:6DWpwE7oL2e+efZwZ08i8z3MLVDWpwE7oL2e+efZwZ08i8z3MLb:dN/e+efimJa3MLEN/e+efimJa3MLb

Score
9/10

Malware Config

Targets

    • Target

      38048c45ff746bf8515a88ef69bc245873694d88ef6df5e8a921bd360d5e6f3c.exe

    • Size

      196KB

    • MD5

      d168b8725b4839102a68d43cd3611aa0

    • SHA1

      84cc88090bda2f0280b399b4f16cd1bc34d7eff6

    • SHA256

      38048c45ff746bf8515a88ef69bc245873694d88ef6df5e8a921bd360d5e6f3c

    • SHA512

      72608801ebd16a805e60e7ae638ce71e1622b2abbfa941148adc2dc316979d751abfc4205e31c12dc8bdffbac651049c2904e48d68a971a24e50cd24b744107e

    • SSDEEP

      3072:6DWpwE7oL2e+efZwZ08i8z3MLVDWpwE7oL2e+efZwZ08i8z3MLb:dN/e+efimJa3MLEN/e+efimJa3MLb

    Score
    9/10
    • Renames multiple (4087) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks