02d8f6b04b72700b2d1075b757b064dd9384245ca447d300f38063265f7fda35 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

b26e92d3ad...0N.exe

windows7-x64

9

b26e92d3ad...0N.exe

windows10-2004-x64

9

Sharing

General

Target

b26e92d3ad372f4982aa8aad81a3f320N.exe
Size

81KB
Sample

240813-vcvn8azdmm
MD5

b26e92d3ad372f4982aa8aad81a3f320
SHA1

50bc91ce81770da338e9da02e44a8da835188c4a
SHA256

02d8f6b04b72700b2d1075b757b064dd9384245ca447d300f38063265f7fda35
SHA512

21468e39410bd6b136f4b5fd555daab0d0e0bf16cfbe8b3816ef6b501881d88baf4438362dfa123f4905a187fb6efed5803a7887ff16c293c6c6f1bf266c0318
SSDEEP

1536:W7ZppApBULcfpHLcfpyD3tX9K7ZppApBULcfpHLcfpyD3tX9w:6pWpBwchcwD3tX9OpWpBwchcwD3tX9w

Score

9^/10

discovery ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b26e92d3ad372f4982aa8aad81a3f320N.exe

Resource

win7-20240708-en

discovery ransomware

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

b26e92d3ad372f4982aa8aad81a3f320N.exe

Resource

win10v2004-20240802-en

discovery ransomware

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  b26e92d3ad372f4982aa8aad81a3f320N.exe
- Size
  
  81KB
- MD5
  
  b26e92d3ad372f4982aa8aad81a3f320
- SHA1
  
  50bc91ce81770da338e9da02e44a8da835188c4a
- SHA256
  
  02d8f6b04b72700b2d1075b757b064dd9384245ca447d300f38063265f7fda35
- SHA512
  
  21468e39410bd6b136f4b5fd555daab0d0e0bf16cfbe8b3816ef6b501881d88baf4438362dfa123f4905a187fb6efed5803a7887ff16c293c6c6f1bf266c0318
- SSDEEP
  
  1536:W7ZppApBULcfpHLcfpyD3tX9K7ZppApBULcfpHLcfpyD3tX9w:6pWpBwchcwD3tX9OpWpBwchcwD3tX9w
Score

9^/10

discovery ransomware
- Renames multiple (4380) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryransomware

behavioral2

discoveryransomware

© 2018-2025

Terms | Privacy