Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b26e92d3ad372f4982aa8aad81a3f320N.exe

  • Size

    81KB

  • Sample

    240813-vcvn8azdmm

  • MD5

    b26e92d3ad372f4982aa8aad81a3f320

  • SHA1

    50bc91ce81770da338e9da02e44a8da835188c4a

  • SHA256

    02d8f6b04b72700b2d1075b757b064dd9384245ca447d300f38063265f7fda35

  • SHA512

    21468e39410bd6b136f4b5fd555daab0d0e0bf16cfbe8b3816ef6b501881d88baf4438362dfa123f4905a187fb6efed5803a7887ff16c293c6c6f1bf266c0318

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpyD3tX9K7ZppApBULcfpHLcfpyD3tX9w:6pWpBwchcwD3tX9OpWpBwchcwD3tX9w

Score
9/10

Malware Config

Targets

    • Target

      b26e92d3ad372f4982aa8aad81a3f320N.exe

    • Size

      81KB

    • MD5

      b26e92d3ad372f4982aa8aad81a3f320

    • SHA1

      50bc91ce81770da338e9da02e44a8da835188c4a

    • SHA256

      02d8f6b04b72700b2d1075b757b064dd9384245ca447d300f38063265f7fda35

    • SHA512

      21468e39410bd6b136f4b5fd555daab0d0e0bf16cfbe8b3816ef6b501881d88baf4438362dfa123f4905a187fb6efed5803a7887ff16c293c6c6f1bf266c0318

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpyD3tX9K7ZppApBULcfpHLcfpyD3tX9w:6pWpBwchcwD3tX9OpWpBwchcwD3tX9w

    Score
    9/10
    • Renames multiple (4380) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks