Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
01683a05fafe4dcfa31299af9640d0ef734d12a59b8eb608040fc5ccb14ce370
-
Size
193KB
-
Sample
240722-wp7pzs1ajq
-
MD5
8ea024a514ff78c9d172b10ccd58945e
-
SHA1
6c6fdcb2529b9508be9743c99435ea26ea5b88f2
-
SHA256
01683a05fafe4dcfa31299af9640d0ef734d12a59b8eb608040fc5ccb14ce370
-
SHA512
c2e957d3566f7b17353c2b1999e7855540ae0f49e81673635f892b1ee3ee7d9b55edc001a302ced35ba77ad6b994fa00f2221b30eef6690bfa1a4f7b5b70cac9
-
SSDEEP
3072:9QWpze+eO888888888888888888888888888888888888888888888888888888T:Lpe+ekeFpe+ekeJ
Static task
static1
Behavioral task
behavioral1
Sample
01683a05fafe4dcfa31299af9640d0ef734d12a59b8eb608040fc5ccb14ce370.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
01683a05fafe4dcfa31299af9640d0ef734d12a59b8eb608040fc5ccb14ce370.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
01683a05fafe4dcfa31299af9640d0ef734d12a59b8eb608040fc5ccb14ce370
-
Size
193KB
-
MD5
8ea024a514ff78c9d172b10ccd58945e
-
SHA1
6c6fdcb2529b9508be9743c99435ea26ea5b88f2
-
SHA256
01683a05fafe4dcfa31299af9640d0ef734d12a59b8eb608040fc5ccb14ce370
-
SHA512
c2e957d3566f7b17353c2b1999e7855540ae0f49e81673635f892b1ee3ee7d9b55edc001a302ced35ba77ad6b994fa00f2221b30eef6690bfa1a4f7b5b70cac9
-
SSDEEP
3072:9QWpze+eO888888888888888888888888888888888888888888888888888888T:Lpe+ekeFpe+ekeJ
Score9/10-
Renames multiple (595) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-