Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6569af39715a4ed4158f10c1cbfd6d858636180897982791e65db6b83b9f570e
-
Size
96KB
-
Sample
240806-2jnykswgre
-
MD5
39372fc133247d172011289d25b09caa
-
SHA1
0ada614d65179e906a8c3180f64207c05991df25
-
SHA256
6569af39715a4ed4158f10c1cbfd6d858636180897982791e65db6b83b9f570e
-
SHA512
1ecdd362055bd1179d33dbeadc5701001e55b85b522ba3142e3e463526fc8c252963ceba5d0d0cc46c1a94ecec1cca3787d8a3114276ba2621c65328c19dcf46
-
SSDEEP
1536:V7Zf/FAxTWM2MqpYpU7Zf/FAxTWM2MqpYpj:fnyr8nyrb
Behavioral task
behavioral1
Sample
6569af39715a4ed4158f10c1cbfd6d858636180897982791e65db6b83b9f570e.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
6569af39715a4ed4158f10c1cbfd6d858636180897982791e65db6b83b9f570e.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
6569af39715a4ed4158f10c1cbfd6d858636180897982791e65db6b83b9f570e
-
Size
96KB
-
MD5
39372fc133247d172011289d25b09caa
-
SHA1
0ada614d65179e906a8c3180f64207c05991df25
-
SHA256
6569af39715a4ed4158f10c1cbfd6d858636180897982791e65db6b83b9f570e
-
SHA512
1ecdd362055bd1179d33dbeadc5701001e55b85b522ba3142e3e463526fc8c252963ceba5d0d0cc46c1a94ecec1cca3787d8a3114276ba2621c65328c19dcf46
-
SSDEEP
1536:V7Zf/FAxTWM2MqpYpU7Zf/FAxTWM2MqpYpj:fnyr8nyrb
Score9/10-
Renames multiple (4857) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-