Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    04889a4f660af65a956cbab1c6a10010N.exe

  • Size

    69KB

  • Sample

    240720-vk31kawbmp

  • MD5

    04889a4f660af65a956cbab1c6a10010

  • SHA1

    87e3eb38700370678d5fed2338284ab253ed879d

  • SHA256

    45ccda446707ca8cb2e7ce222c390e8f5bf78014961e5a94c34a8966133f2d82

  • SHA512

    6cb3d8062ecc1fd64e63a22f38a4790035b723355e60052e7bd8a43bba707afd3926634406ae559554ab0e8e2eea333399e4e2fe7a6840878b5be46ff0553b53

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zx+:fnyiQSon

Score
9/10

Malware Config

Targets

    • Target

      04889a4f660af65a956cbab1c6a10010N.exe

    • Size

      69KB

    • MD5

      04889a4f660af65a956cbab1c6a10010

    • SHA1

      87e3eb38700370678d5fed2338284ab253ed879d

    • SHA256

      45ccda446707ca8cb2e7ce222c390e8f5bf78014961e5a94c34a8966133f2d82

    • SHA512

      6cb3d8062ecc1fd64e63a22f38a4790035b723355e60052e7bd8a43bba707afd3926634406ae559554ab0e8e2eea333399e4e2fe7a6840878b5be46ff0553b53

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zx+:fnyiQSon

    Score
    9/10
    • Renames multiple (3728) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks