Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5d171b1796440117083007c9c25683a0N.exe
-
Size
58KB
-
Sample
240803-grsxaazelf
-
MD5
5d171b1796440117083007c9c25683a0
-
SHA1
5b0113836070616e4cd080dea3a5a36f3b4e6af7
-
SHA256
3c0429eeb81a3f84e9202e2d7ae227ef18d076a56d2a28809925d74857491508
-
SHA512
41bbf4a25c597c4096e0d9e0ca70ac8fe44f04d1ce5c03db7974445d8f2079317c60ea9ac84e774d125ed08a7ff9bb795f4868aa3dd49b9e6acd38c64ef78d81
-
SSDEEP
1536:W7ZppApcZ/D5zf6ydyf+abMkF24kzK3jbrCkoRWNkzZ/D5zf6ydyf+abMkF24kz8:6pWpcZ/D5zf6ydyf+abMkF24kzK3jbrr
Static task
static1
Behavioral task
behavioral1
Sample
5d171b1796440117083007c9c25683a0N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
5d171b1796440117083007c9c25683a0N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
5d171b1796440117083007c9c25683a0N.exe
-
Size
58KB
-
MD5
5d171b1796440117083007c9c25683a0
-
SHA1
5b0113836070616e4cd080dea3a5a36f3b4e6af7
-
SHA256
3c0429eeb81a3f84e9202e2d7ae227ef18d076a56d2a28809925d74857491508
-
SHA512
41bbf4a25c597c4096e0d9e0ca70ac8fe44f04d1ce5c03db7974445d8f2079317c60ea9ac84e774d125ed08a7ff9bb795f4868aa3dd49b9e6acd38c64ef78d81
-
SSDEEP
1536:W7ZppApcZ/D5zf6ydyf+abMkF24kzK3jbrCkoRWNkzZ/D5zf6ydyf+abMkF24kz8:6pWpcZ/D5zf6ydyf+abMkF24kzK3jbrr
Score9/10-
Renames multiple (3424) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-