Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
352375a5d391aa8b8124281edf737090N.exe
-
Size
100KB
-
Sample
240807-awpxvsyglc
-
MD5
352375a5d391aa8b8124281edf737090
-
SHA1
b3e38f9df8a6edd714b91695fa177eba83fac86b
-
SHA256
51926d7689d3a4b2338811392123cae514bdbb2b3b94d9831b4f487100ef99df
-
SHA512
6cffc50e0d0eb9fca6136fb7b76527130851a64764b8660bdb0830d0baefa5f700e869ecc37bbd824b17aebcb386398a275d3cab12a064a83336a4b448dc793e
-
SSDEEP
1536:W7ZppApktshJYAJYDVXxXk7ZppApktshJYAJYDVXxX0z7zi:6pWpktsUVXxXkpWpktsUVXxXqXi
Static task
static1
Behavioral task
behavioral1
Sample
352375a5d391aa8b8124281edf737090N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
352375a5d391aa8b8124281edf737090N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
352375a5d391aa8b8124281edf737090N.exe
-
Size
100KB
-
MD5
352375a5d391aa8b8124281edf737090
-
SHA1
b3e38f9df8a6edd714b91695fa177eba83fac86b
-
SHA256
51926d7689d3a4b2338811392123cae514bdbb2b3b94d9831b4f487100ef99df
-
SHA512
6cffc50e0d0eb9fca6136fb7b76527130851a64764b8660bdb0830d0baefa5f700e869ecc37bbd824b17aebcb386398a275d3cab12a064a83336a4b448dc793e
-
SSDEEP
1536:W7ZppApktshJYAJYDVXxXk7ZppApktshJYAJYDVXxX0z7zi:6pWpktsUVXxXkpWpktsUVXxXqXi
Score9/10-
Renames multiple (4490) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-