Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3221864ea83f81cc1bc8b36b080de000N.exe
-
Size
50KB
-
Sample
240728-b9h7xa1emm
-
MD5
3221864ea83f81cc1bc8b36b080de000
-
SHA1
46215e598cc2ec1250fd776970d9d34cc5d016ae
-
SHA256
0016f385395b9da566997851ca1c4b6944d633a9279fccce9e062057be5b7821
-
SHA512
d25846db4608572c6d8d5b56f7a91d230d068c2d297faa425bd95761b2d201e809c7c77bf9cf1131b50f507bdcf671512beabe2f5c3f2bd6540a36431a63fdbb
-
SSDEEP
768:/7BlpQpARFbhIYJIJDYJIJPqAlJIqAlJVUrn5c5hU:/7ZQpApze+eMUL67U
Malware Config
Targets
-
-
Target
3221864ea83f81cc1bc8b36b080de000N.exe
-
Size
50KB
-
MD5
3221864ea83f81cc1bc8b36b080de000
-
SHA1
46215e598cc2ec1250fd776970d9d34cc5d016ae
-
SHA256
0016f385395b9da566997851ca1c4b6944d633a9279fccce9e062057be5b7821
-
SHA512
d25846db4608572c6d8d5b56f7a91d230d068c2d297faa425bd95761b2d201e809c7c77bf9cf1131b50f507bdcf671512beabe2f5c3f2bd6540a36431a63fdbb
-
SSDEEP
768:/7BlpQpARFbhIYJIJDYJIJPqAlJIqAlJVUrn5c5hU:/7ZQpApze+eMUL67U
Score9/10-
Renames multiple (604) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-