Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    54d557c03a5d8bb1c3152cd6ba6c2833841189a7497119583ebf0d79004a4b10

  • Size

    54KB

  • Sample

    240807-1stdzsvcqj

  • MD5

    c66cd31a6f2e9e9092a5bd952384128a

  • SHA1

    7288bed0fa71499fbc62b8eeffa14644218dd497

  • SHA256

    54d557c03a5d8bb1c3152cd6ba6c2833841189a7497119583ebf0d79004a4b10

  • SHA512

    b7f297fe538feda180886968df1ca0329b1bd6960e308097807faffd689441dcd117399dfd18687c3c2a53c0f87be0345e0e43fa7bba581a56abc6cce7a2b292

  • SSDEEP

    768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQY8BT37CPKKdJJcbQbf1Oti1JGBZ:CTW7JJZENTNyQYaTW7JJZENTNyQYw1tR

Malware Config

Targets

    • Target

      54d557c03a5d8bb1c3152cd6ba6c2833841189a7497119583ebf0d79004a4b10

    • Size

      54KB

    • MD5

      c66cd31a6f2e9e9092a5bd952384128a

    • SHA1

      7288bed0fa71499fbc62b8eeffa14644218dd497

    • SHA256

      54d557c03a5d8bb1c3152cd6ba6c2833841189a7497119583ebf0d79004a4b10

    • SHA512

      b7f297fe538feda180886968df1ca0329b1bd6960e308097807faffd689441dcd117399dfd18687c3c2a53c0f87be0345e0e43fa7bba581a56abc6cce7a2b292

    • SSDEEP

      768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQY8BT37CPKKdJJcbQbf1Oti1JGBZ:CTW7JJZENTNyQYaTW7JJZENTNyQYw1tR

    • Renames multiple (1587) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks