Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
9b92097ebd1402422a5a095bfe2dc160N.exe
-
Size
83KB
-
Sample
240726-hy5ebstapr
-
MD5
9b92097ebd1402422a5a095bfe2dc160
-
SHA1
d0a1cf11a9e2a5557fde23211b0235281df996ca
-
SHA256
928fdda7758d5b7223d3e1fbc41286b4a1df8c27c554c88d5ab7e3af70ba94e1
-
SHA512
829ba9bed6487979bbb1d6ddd17fe535aa99edbc03f4f1b6dce4c6f83276f1d60c1c5ed0a79fb2e2ca8531bd209cca7c168a5bf9695de0a1d36ea3b3ce070f0c
-
SSDEEP
768:W7BlpppARFbhHFoqAJwBqAJw1VyjVy47BlpppARFbhHFoqAJwBqAJw1VyjVy84gR:W7ZppApyVyjVy47ZppApyVyjVyK
Malware Config
Targets
-
-
Target
9b92097ebd1402422a5a095bfe2dc160N.exe
-
Size
83KB
-
MD5
9b92097ebd1402422a5a095bfe2dc160
-
SHA1
d0a1cf11a9e2a5557fde23211b0235281df996ca
-
SHA256
928fdda7758d5b7223d3e1fbc41286b4a1df8c27c554c88d5ab7e3af70ba94e1
-
SHA512
829ba9bed6487979bbb1d6ddd17fe535aa99edbc03f4f1b6dce4c6f83276f1d60c1c5ed0a79fb2e2ca8531bd209cca7c168a5bf9695de0a1d36ea3b3ce070f0c
-
SSDEEP
768:W7BlpppARFbhHFoqAJwBqAJw1VyjVy47BlpppARFbhHFoqAJwBqAJw1VyjVy84gR:W7ZppApyVyjVy47ZppApyVyjVyK
Score9/10-
Renames multiple (4263) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-