Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9b92097ebd1402422a5a095bfe2dc160N.exe

  • Size

    83KB

  • Sample

    240726-hy5ebstapr

  • MD5

    9b92097ebd1402422a5a095bfe2dc160

  • SHA1

    d0a1cf11a9e2a5557fde23211b0235281df996ca

  • SHA256

    928fdda7758d5b7223d3e1fbc41286b4a1df8c27c554c88d5ab7e3af70ba94e1

  • SHA512

    829ba9bed6487979bbb1d6ddd17fe535aa99edbc03f4f1b6dce4c6f83276f1d60c1c5ed0a79fb2e2ca8531bd209cca7c168a5bf9695de0a1d36ea3b3ce070f0c

  • SSDEEP

    768:W7BlpppARFbhHFoqAJwBqAJw1VyjVy47BlpppARFbhHFoqAJwBqAJw1VyjVy84gR:W7ZppApyVyjVy47ZppApyVyjVyK

Score
9/10

Malware Config

Targets

    • Target

      9b92097ebd1402422a5a095bfe2dc160N.exe

    • Size

      83KB

    • MD5

      9b92097ebd1402422a5a095bfe2dc160

    • SHA1

      d0a1cf11a9e2a5557fde23211b0235281df996ca

    • SHA256

      928fdda7758d5b7223d3e1fbc41286b4a1df8c27c554c88d5ab7e3af70ba94e1

    • SHA512

      829ba9bed6487979bbb1d6ddd17fe535aa99edbc03f4f1b6dce4c6f83276f1d60c1c5ed0a79fb2e2ca8531bd209cca7c168a5bf9695de0a1d36ea3b3ce070f0c

    • SSDEEP

      768:W7BlpppARFbhHFoqAJwBqAJw1VyjVy47BlpppARFbhHFoqAJwBqAJw1VyjVy84gR:W7ZppApyVyjVy47ZppApyVyjVyK

    Score
    9/10
    • Renames multiple (4263) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks