Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc595fac0f1658220abac49fe974d78e9017c9176eadffe37562ecf82ea7c23d

  • Size

    383KB

  • Sample

    240802-gfxq4ateph

  • MD5

    937ee5646f9f4d5dc09be21099f2e276

  • SHA1

    a914781bca4c2941132274720b7a02d587d8c2d1

  • SHA256

    dc595fac0f1658220abac49fe974d78e9017c9176eadffe37562ecf82ea7c23d

  • SHA512

    0a425791d9dfb85b4877e6cff024e85de1d92fabb8cf8ecfa096ec51d348d33c020793b92231319f27ce9dcf89f286ae7443ed6967d8fc28f54f80060621aa71

  • SSDEEP

    6144:PqFF2Ie+effypW+Dffz1gUZ3sOeNw0VqIJ/uJn9tvq3v3/sSQJw1Tn:iFF2UpW+Dfhg0cvd5JIDvTJw1L

Score
9/10

Malware Config

Targets

    • Target

      dc595fac0f1658220abac49fe974d78e9017c9176eadffe37562ecf82ea7c23d

    • Size

      383KB

    • MD5

      937ee5646f9f4d5dc09be21099f2e276

    • SHA1

      a914781bca4c2941132274720b7a02d587d8c2d1

    • SHA256

      dc595fac0f1658220abac49fe974d78e9017c9176eadffe37562ecf82ea7c23d

    • SHA512

      0a425791d9dfb85b4877e6cff024e85de1d92fabb8cf8ecfa096ec51d348d33c020793b92231319f27ce9dcf89f286ae7443ed6967d8fc28f54f80060621aa71

    • SSDEEP

      6144:PqFF2Ie+effypW+Dffz1gUZ3sOeNw0VqIJ/uJn9tvq3v3/sSQJw1Tn:iFF2UpW+Dfhg0cvd5JIDvTJw1L

    Score
    9/10
    • Renames multiple (3532) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks