Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0575a6ecc31fecd8b2b4323a3ae21890N.exe

  • Size

    43KB

  • Sample

    240723-zalqrazeqc

  • MD5

    0575a6ecc31fecd8b2b4323a3ae21890

  • SHA1

    eab660ce7c1b42e908929e3780301965ec65419a

  • SHA256

    7ab89218f87eec265ed366bcb1bfdafd99389e4406c0ca529ad1cf59990274cd

  • SHA512

    00a5996193b2fb7c77764c864c3256bd2913533afc6e171898eaba8be03884a58a6ebb0a7b974ae0833d782e8303820fd12fa7763305e2f77daad2ce0588f213

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJXGiXZ7gC:V7Zf/FAxTWoJJX7

Malware Config

Targets

    • Target

      0575a6ecc31fecd8b2b4323a3ae21890N.exe

    • Size

      43KB

    • MD5

      0575a6ecc31fecd8b2b4323a3ae21890

    • SHA1

      eab660ce7c1b42e908929e3780301965ec65419a

    • SHA256

      7ab89218f87eec265ed366bcb1bfdafd99389e4406c0ca529ad1cf59990274cd

    • SHA512

      00a5996193b2fb7c77764c864c3256bd2913533afc6e171898eaba8be03884a58a6ebb0a7b974ae0833d782e8303820fd12fa7763305e2f77daad2ce0588f213

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJXGiXZ7gC:V7Zf/FAxTWoJJX7

    • Renames multiple (325) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks