Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7111744d8fdf1362c9e6b55bb25e7890N.exe

  • Size

    148KB

  • Sample

    240806-hfc75awdlh

  • MD5

    7111744d8fdf1362c9e6b55bb25e7890

  • SHA1

    888b8c7c9f6d2060a7d35926cc5de3235e010572

  • SHA256

    c702bd9185ee13342f6b04cdf64c7ccca87276731a2f20a0519534517d530002

  • SHA512

    54bfff21bc5de65e35fa4785fd96a33d6932897657ba92c0693a915c7a89bc370868b6a4cbc9cd70bd54a9379121a04ed2a62b43682a6b0244d7a2be638782ec

  • SSDEEP

    1536:W7Z+pApfGQ3y3RWvfmRfm9sKsSd5GT6SC7Z+pApfGQ3y3RWvfmRfm9sKsSd5GT6U:6+WpDfmRfmh2TA+WpDfmRfmh2T1ZV

Score
9/10

Malware Config

Targets

    • Target

      7111744d8fdf1362c9e6b55bb25e7890N.exe

    • Size

      148KB

    • MD5

      7111744d8fdf1362c9e6b55bb25e7890

    • SHA1

      888b8c7c9f6d2060a7d35926cc5de3235e010572

    • SHA256

      c702bd9185ee13342f6b04cdf64c7ccca87276731a2f20a0519534517d530002

    • SHA512

      54bfff21bc5de65e35fa4785fd96a33d6932897657ba92c0693a915c7a89bc370868b6a4cbc9cd70bd54a9379121a04ed2a62b43682a6b0244d7a2be638782ec

    • SSDEEP

      1536:W7Z+pApfGQ3y3RWvfmRfm9sKsSd5GT6SC7Z+pApfGQ3y3RWvfmRfm9sKsSd5GT6U:6+WpDfmRfmh2TA+WpDfmRfmh2T1ZV

    Score
    9/10
    • Renames multiple (3706) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks