Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    18433ce3be04c14431aefcfa18843e30N.exe

  • Size

    114KB

  • Sample

    240802-29lwxaygrg

  • MD5

    18433ce3be04c14431aefcfa18843e30

  • SHA1

    4321fd6e6cc93c8ed1472e783b1dd9ec1b9c0f7f

  • SHA256

    5c5d8d625fa20613af8d3675075fd39a159cb052c72ca81d4b14440e69bae48f

  • SHA512

    500c7228b35aaf3388280a36f5066c4d3e99c635e0cea6e5e6634f13616243727eed7e91db4c0f57f365fab499bbfc6ccf8ff56325cd3624efb328cd711928a7

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpX2/Nw/Nwmx+7ZppApBULcfpHLcfpX2/Nw/NwmxF:6pWpBwchcV2WxipWpBwchcV2WxF

Score
9/10

Malware Config

Targets

    • Target

      18433ce3be04c14431aefcfa18843e30N.exe

    • Size

      114KB

    • MD5

      18433ce3be04c14431aefcfa18843e30

    • SHA1

      4321fd6e6cc93c8ed1472e783b1dd9ec1b9c0f7f

    • SHA256

      5c5d8d625fa20613af8d3675075fd39a159cb052c72ca81d4b14440e69bae48f

    • SHA512

      500c7228b35aaf3388280a36f5066c4d3e99c635e0cea6e5e6634f13616243727eed7e91db4c0f57f365fab499bbfc6ccf8ff56325cd3624efb328cd711928a7

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpX2/Nw/Nwmx+7ZppApBULcfpHLcfpX2/Nw/NwmxF:6pWpBwchcV2WxipWpBwchcV2WxF

    Score
    9/10
    • Renames multiple (4331) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks