Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    60d9c4e0138c4d6598fd8cdad4628110N.exe

  • Size

    84KB

  • Sample

    240803-g6mc2swalp

  • MD5

    60d9c4e0138c4d6598fd8cdad4628110

  • SHA1

    559f95d39ee75767f14dc25c9ad27c2d68ea8190

  • SHA256

    b9f5ecadaf07ea1eaf68a5d33e07633780bd2ad8c8d713acd1827aa18003299d

  • SHA512

    d1aa530e87a8befcc6e83354c3030830b2b1e2f3bdbf857a2688622c6e2820c53b639fe89cf6ca0e2e754f5e45e2a029c52b4e1449d9ae84fd33f460cc2c6f2d

  • SSDEEP

    768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyfxAkJhxAkJq7BlpppARFbhHFoqAJwBqAJW:W7ZppApyVyjVyQ7ZppApyVyjVyl

Score
9/10

Malware Config

Targets

    • Target

      60d9c4e0138c4d6598fd8cdad4628110N.exe

    • Size

      84KB

    • MD5

      60d9c4e0138c4d6598fd8cdad4628110

    • SHA1

      559f95d39ee75767f14dc25c9ad27c2d68ea8190

    • SHA256

      b9f5ecadaf07ea1eaf68a5d33e07633780bd2ad8c8d713acd1827aa18003299d

    • SHA512

      d1aa530e87a8befcc6e83354c3030830b2b1e2f3bdbf857a2688622c6e2820c53b639fe89cf6ca0e2e754f5e45e2a029c52b4e1449d9ae84fd33f460cc2c6f2d

    • SSDEEP

      768:W7BlpppARFbhHFoqAJwBqAJw1VyjVyfxAkJhxAkJq7BlpppARFbhHFoqAJwBqAJW:W7ZppApyVyjVyQ7ZppApyVyjVyl

    Score
    9/10
    • Renames multiple (4397) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks