Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    059738ad0571ce207410669ee38ec200N.exe

  • Size

    54KB

  • Sample

    240723-zayqbazerf

  • MD5

    059738ad0571ce207410669ee38ec200

  • SHA1

    7d0a59ec089839d63d348be36df62a855ef39eb0

  • SHA256

    d881aeb137bc4a5e9afc87a34cbc2bae9d40869e914cf3babca1258625018050

  • SHA512

    b2f3c639577f5be9e6880509590a45dd8a1d9ce92ac895dc5de40b90f8e06c13f44c44fe88eb1c4d2885ce14c486767080e25fcf2a0c1f66911cce9363649900

  • SSDEEP

    1536:V7Zf/FAxTWoJJ7TTKP2awclvmxaKP2awclvmx+:fny1aP2awclvmxrP2awclvmx+

Malware Config

Targets

    • Target

      059738ad0571ce207410669ee38ec200N.exe

    • Size

      54KB

    • MD5

      059738ad0571ce207410669ee38ec200

    • SHA1

      7d0a59ec089839d63d348be36df62a855ef39eb0

    • SHA256

      d881aeb137bc4a5e9afc87a34cbc2bae9d40869e914cf3babca1258625018050

    • SHA512

      b2f3c639577f5be9e6880509590a45dd8a1d9ce92ac895dc5de40b90f8e06c13f44c44fe88eb1c4d2885ce14c486767080e25fcf2a0c1f66911cce9363649900

    • SSDEEP

      1536:V7Zf/FAxTWoJJ7TTKP2awclvmxaKP2awclvmx+:fny1aP2awclvmxrP2awclvmx+

    • Renames multiple (3203) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks