Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d68de056221e96129831654b32415f4d3ea11466ac37cf34bb4bcddeced653d6

  • Size

    75KB

  • Sample

    240806-dnrchaxgjm

  • MD5

    f2f2fffc563a1f5de9d60ebe84d7203e

  • SHA1

    566d76032d419380ef65e97380ecdf2eb22ea649

  • SHA256

    d68de056221e96129831654b32415f4d3ea11466ac37cf34bb4bcddeced653d6

  • SHA512

    e0ecefa3126176025aa58aa5139f556556aff7136e2534b23fc79534735a05d712c97950bf9e8d6e01f89c71525ab43b33db6a51aa2cb6fb04c24204744ffca9

  • SSDEEP

    768:W7Blp+pARFbhBgnKL+8t8NZEPAPW7Blp+pARFbhBgnKL+8t8NZEPAPH6dZ:W7Z+pAp2nKL74+7Z+pAp2nKL74P6dZ

Score
9/10

Malware Config

Targets

    • Target

      d68de056221e96129831654b32415f4d3ea11466ac37cf34bb4bcddeced653d6

    • Size

      75KB

    • MD5

      f2f2fffc563a1f5de9d60ebe84d7203e

    • SHA1

      566d76032d419380ef65e97380ecdf2eb22ea649

    • SHA256

      d68de056221e96129831654b32415f4d3ea11466ac37cf34bb4bcddeced653d6

    • SHA512

      e0ecefa3126176025aa58aa5139f556556aff7136e2534b23fc79534735a05d712c97950bf9e8d6e01f89c71525ab43b33db6a51aa2cb6fb04c24204744ffca9

    • SSDEEP

      768:W7Blp+pARFbhBgnKL+8t8NZEPAPW7Blp+pARFbhBgnKL+8t8NZEPAPH6dZ:W7Z+pAp2nKL74+7Z+pAp2nKL74P6dZ

    Score
    9/10
    • Renames multiple (4483) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks