Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1e2fd78cd670c898e93aa6c148015470N.exe

  • Size

    193KB

  • Sample

    240719-287f8ayekg

  • MD5

    1e2fd78cd670c898e93aa6c148015470

  • SHA1

    ab81efb9504bb8e2ca75837c0dcf08912494a704

  • SHA256

    58405d47c7fba714d17f22beccd0c00fec8c669b82c60cfedd9d92b2df735c39

  • SHA512

    6e47e53bc91d5e6b058a51485ac3490ed4e3833e1b5b27f4582de5ca5bf7b2fbe5728e919d99abbfb493e509f1f43a49391e656382b0ee1d7995e0056e53221e

  • SSDEEP

    6144:RqKvb0CYJ973e+eKZOf7fjqKvb0CYJ973e+eKZOf7fD:vvbxYX7ZqvbxYX7ZI

Score
9/10

Malware Config

Targets

    • Target

      1e2fd78cd670c898e93aa6c148015470N.exe

    • Size

      193KB

    • MD5

      1e2fd78cd670c898e93aa6c148015470

    • SHA1

      ab81efb9504bb8e2ca75837c0dcf08912494a704

    • SHA256

      58405d47c7fba714d17f22beccd0c00fec8c669b82c60cfedd9d92b2df735c39

    • SHA512

      6e47e53bc91d5e6b058a51485ac3490ed4e3833e1b5b27f4582de5ca5bf7b2fbe5728e919d99abbfb493e509f1f43a49391e656382b0ee1d7995e0056e53221e

    • SSDEEP

      6144:RqKvb0CYJ973e+eKZOf7fjqKvb0CYJ973e+eKZOf7fD:vvbxYX7ZqvbxYX7ZI

    Score
    9/10
    • Renames multiple (333) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks