d27f8bd2e292bd360e2d49b945e61faf07f9c761ffd3abf745df9714308b5991 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

8fea1b165c...0N.exe

windows7-x64

9

8fea1b165c...0N.exe

windows10-2004-x64

9

Sharing

General

Target

8fea1b165c0ab995449e8a7d4beda370N.exe
Size

40KB
Sample

240722-lagvxazbmf
MD5

8fea1b165c0ab995449e8a7d4beda370
SHA1

aa28d443c37369ed9db9183df03a4e38f00cae26
SHA256

d27f8bd2e292bd360e2d49b945e61faf07f9c761ffd3abf745df9714308b5991
SHA512

525a24f5eaaaacd7abd3a755db28ce1363d222f7da045ffa2b7a75263666ddb9142c9c25490f1f8e7de7ac7b459cf608fdbed9081f9ac3592b3985e7e81dc450
SSDEEP

768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNyA:V7Zf/FAxTWoJJZENTNyA

Score

9^/10

ransomware upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

8fea1b165c0ab995449e8a7d4beda370N.exe

Resource

win7-20240708-en

windows7-x64

3 signatures

120 seconds

Behavioral task

behavioral2

Sample

8fea1b165c0ab995449e8a7d4beda370N.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

3 signatures

120 seconds

Malware Config

Targets

- Target
  
  8fea1b165c0ab995449e8a7d4beda370N.exe
- Size
  
  40KB
- MD5
  
  8fea1b165c0ab995449e8a7d4beda370
- SHA1
  
  aa28d443c37369ed9db9183df03a4e38f00cae26
- SHA256
  
  d27f8bd2e292bd360e2d49b945e61faf07f9c761ffd3abf745df9714308b5991
- SHA512
  
  525a24f5eaaaacd7abd3a755db28ce1363d222f7da045ffa2b7a75263666ddb9142c9c25490f1f8e7de7ac7b459cf608fdbed9081f9ac3592b3985e7e81dc450
- SSDEEP
  
  768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATNyA:V7Zf/FAxTWoJJZENTNyA
Score

9^/10

ransomware upx
- Renames multiple (3037) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy