Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1da6a1a90e6801dd5b0f051e4b0a2ea0c6923480485e2b16952e3ea000929e33

  • Size

    137KB

  • Sample

    240813-xmmsga1bng

  • MD5

    923a4796788ebd7b122be2c10d71cfd6

  • SHA1

    4d61257ae01515000163fdb03d0b97254a0daea9

  • SHA256

    1da6a1a90e6801dd5b0f051e4b0a2ea0c6923480485e2b16952e3ea000929e33

  • SHA512

    a0582f2aaccf2b761547cd4e3f00c115cff88b6abc7f9451e7c909ed911b2b0a09ff862570b8e1b997f58073e57316232bc9cdab2162f73110ef81fb0af5f82c

  • SSDEEP

    3072:6pWpkc0NQn0NQiBXQWpWpkc0NQn0NQiBXQ0:PEBXQLEBXQ0

Score
9/10

Malware Config

Targets

    • Target

      1da6a1a90e6801dd5b0f051e4b0a2ea0c6923480485e2b16952e3ea000929e33

    • Size

      137KB

    • MD5

      923a4796788ebd7b122be2c10d71cfd6

    • SHA1

      4d61257ae01515000163fdb03d0b97254a0daea9

    • SHA256

      1da6a1a90e6801dd5b0f051e4b0a2ea0c6923480485e2b16952e3ea000929e33

    • SHA512

      a0582f2aaccf2b761547cd4e3f00c115cff88b6abc7f9451e7c909ed911b2b0a09ff862570b8e1b997f58073e57316232bc9cdab2162f73110ef81fb0af5f82c

    • SSDEEP

      3072:6pWpkc0NQn0NQiBXQWpWpkc0NQn0NQiBXQ0:PEBXQLEBXQ0

    Score
    9/10
    • Renames multiple (4566) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks