Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    630805d8200009bd71094b89a26c82f0N.exe

  • Size

    83KB

  • Sample

    240806-fy9b6svbmc

  • MD5

    630805d8200009bd71094b89a26c82f0

  • SHA1

    7075d78ea285cf2e80ebafae65784977b2b2ee1c

  • SHA256

    233fe7bc23d5a67d58fb4235fbeac235e0d0247f865d94f49556615549c76d81

  • SHA512

    826e00622c3e0c4605639f6b92b42eb9d1249f471e24c4e3d1703ce02d65678ff31a403d35892eef2f818a0e7e30892594840b98a3f9c41634438c08c071ac3d

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxyhy:fnyiQSoS

Malware Config

Targets

    • Target

      630805d8200009bd71094b89a26c82f0N.exe

    • Size

      83KB

    • MD5

      630805d8200009bd71094b89a26c82f0

    • SHA1

      7075d78ea285cf2e80ebafae65784977b2b2ee1c

    • SHA256

      233fe7bc23d5a67d58fb4235fbeac235e0d0247f865d94f49556615549c76d81

    • SHA512

      826e00622c3e0c4605639f6b92b42eb9d1249f471e24c4e3d1703ce02d65678ff31a403d35892eef2f818a0e7e30892594840b98a3f9c41634438c08c071ac3d

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxyhy:fnyiQSoS

    • Renames multiple (3177) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks