Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

5e276e9357...20.exe

windows7-x64

9

5e276e9357...20.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5e276e9357331d500c063cf58be594dcc126416ce74850524be4c529a1103820

  • Size

    161KB

  • Sample

    240722-1z3aga1emr

  • MD5

    22cd950d10bf532712368da3af5860df

  • SHA1

    0201418f5d67a372e1cb95c456156e77e4bb7c29

  • SHA256

    5e276e9357331d500c063cf58be594dcc126416ce74850524be4c529a1103820

  • SHA512

    c74c8fd06764f86c5129aacbdebd670114b133067f605fe397851973db115ab1f2997eebc2baae66a803b40c981e33bbabcaa8758fb114140943d37d59da3129

  • SSDEEP

    1536:W7ZDpApYbWjIoPyPoLzV7c6Sho7ZDpApYbWjIoPyPoLzV7c6ShT+P:6DWpfDWpr

Score
9/10
ransomware

Malware Config

Targets

    • Target

      5e276e9357331d500c063cf58be594dcc126416ce74850524be4c529a1103820

    • Size

      161KB

    • MD5

      22cd950d10bf532712368da3af5860df

    • SHA1

      0201418f5d67a372e1cb95c456156e77e4bb7c29

    • SHA256

      5e276e9357331d500c063cf58be594dcc126416ce74850524be4c529a1103820

    • SHA512

      c74c8fd06764f86c5129aacbdebd670114b133067f605fe397851973db115ab1f2997eebc2baae66a803b40c981e33bbabcaa8758fb114140943d37d59da3129

    • SSDEEP

      1536:W7ZDpApYbWjIoPyPoLzV7c6Sho7ZDpApYbWjIoPyPoLzV7c6ShT+P:6DWpfDWpr

    Score
    9/10
    ransomware

    • Renames multiple (3592) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks