Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    daabef59b6dce7601847ac25a359777917bb38107e694096ba2be929446cdb6b

  • Size

    78KB

  • Sample

    240726-evgbjswbrp

  • MD5

    375c7f3bb519478d75c596801ca8cb98

  • SHA1

    241e14e1d158073cef82b542a6195aa71e68a059

  • SHA256

    daabef59b6dce7601847ac25a359777917bb38107e694096ba2be929446cdb6b

  • SHA512

    5bc3f6a7b5b54780b8623079dbbe50144993aa741a25978d69c73652cdac7c77a72e95ec3bffddc0d2b9b85355901ba670186246a962aa9b8ddfec04b8221702

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxCl:fnyiQSorl

Malware Config

Targets

    • Target

      daabef59b6dce7601847ac25a359777917bb38107e694096ba2be929446cdb6b

    • Size

      78KB

    • MD5

      375c7f3bb519478d75c596801ca8cb98

    • SHA1

      241e14e1d158073cef82b542a6195aa71e68a059

    • SHA256

      daabef59b6dce7601847ac25a359777917bb38107e694096ba2be929446cdb6b

    • SHA512

      5bc3f6a7b5b54780b8623079dbbe50144993aa741a25978d69c73652cdac7c77a72e95ec3bffddc0d2b9b85355901ba670186246a962aa9b8ddfec04b8221702

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxCl:fnyiQSorl

    • Renames multiple (3449) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks