Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
098de35777c61fc42f2bfc58d3e546c9f3950dfa60e3bd0c3332aae0ad3481b1
-
Size
137KB
-
Sample
240727-w8e43swflh
-
MD5
393cf3f4f3d37c75f2b5954e0010b698
-
SHA1
ff9b4975e132711464dcb4eeec5a05829d787aff
-
SHA256
098de35777c61fc42f2bfc58d3e546c9f3950dfa60e3bd0c3332aae0ad3481b1
-
SHA512
d3c237d686553334dc1b6be241b5fccd35c68002a2f66b5ff58748085a500018023db221eadbe78d435f41b60613f39931c021dcc3b1418ccf9f80a7b41d8c86
-
SSDEEP
1536:W7Z+pApfGQ3y3RWvfmRfm9sKsSd5GTf7Z+pApfGQ3y3RWvfmRfm9sKsSd5GTi:6+WpDfmRfmh2Td+WpDfmRfmh2Ti
Static task
static1
Behavioral task
behavioral1
Sample
098de35777c61fc42f2bfc58d3e546c9f3950dfa60e3bd0c3332aae0ad3481b1.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
098de35777c61fc42f2bfc58d3e546c9f3950dfa60e3bd0c3332aae0ad3481b1.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
098de35777c61fc42f2bfc58d3e546c9f3950dfa60e3bd0c3332aae0ad3481b1
-
Size
137KB
-
MD5
393cf3f4f3d37c75f2b5954e0010b698
-
SHA1
ff9b4975e132711464dcb4eeec5a05829d787aff
-
SHA256
098de35777c61fc42f2bfc58d3e546c9f3950dfa60e3bd0c3332aae0ad3481b1
-
SHA512
d3c237d686553334dc1b6be241b5fccd35c68002a2f66b5ff58748085a500018023db221eadbe78d435f41b60613f39931c021dcc3b1418ccf9f80a7b41d8c86
-
SSDEEP
1536:W7Z+pApfGQ3y3RWvfmRfm9sKsSd5GTf7Z+pApfGQ3y3RWvfmRfm9sKsSd5GTi:6+WpDfmRfmh2Td+WpDfmRfmh2Ti
Score9/10-
Renames multiple (376) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-