Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4ffd43f2628cca9d4f21a0dbcf89bcb0N.exe
-
Size
51KB
-
Sample
240802-ekyg3svdmq
-
MD5
4ffd43f2628cca9d4f21a0dbcf89bcb0
-
SHA1
b9ef18ef18fd2c5e441bb817284d23f9dfe1378c
-
SHA256
c17d43443adc03299a39153b028848ee67baffb67f7276b8c27cc4c2b8284124
-
SHA512
00185d9589d032b6b3a6c8889697c2eda2aef17a2330fa8e725320c56a9f7c4f521a34c35c91bf647322637bbe7ad2ac0fefa1741244c55ae882507766bc3874
-
SSDEEP
768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAvnscNocN7:W7ZppApBULcfpHLcfpyDoAvnscCcZ
Static task
static1
Behavioral task
behavioral1
Sample
4ffd43f2628cca9d4f21a0dbcf89bcb0N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4ffd43f2628cca9d4f21a0dbcf89bcb0N.exe
Resource
win10v2004-20240730-en
Malware Config
Targets
-
-
Target
4ffd43f2628cca9d4f21a0dbcf89bcb0N.exe
-
Size
51KB
-
MD5
4ffd43f2628cca9d4f21a0dbcf89bcb0
-
SHA1
b9ef18ef18fd2c5e441bb817284d23f9dfe1378c
-
SHA256
c17d43443adc03299a39153b028848ee67baffb67f7276b8c27cc4c2b8284124
-
SHA512
00185d9589d032b6b3a6c8889697c2eda2aef17a2330fa8e725320c56a9f7c4f521a34c35c91bf647322637bbe7ad2ac0fefa1741244c55ae882507766bc3874
-
SSDEEP
768:W7BlpppARFbhjbhg42LcfpR42LcfproFNFew/DbAGw/DbAvnscNocN7:W7ZppApBULcfpHLcfpyDoAvnscCcZ
Score9/10-
Renames multiple (3221) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-