Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4d0f4bee023ea2d1ab1b0ece45891ed0N.exe

  • Size

    69KB

  • Sample

    240814-wlv7sawane

  • MD5

    4d0f4bee023ea2d1ab1b0ece45891ed0

  • SHA1

    3f4b1dcd945092ac4b0d9b1ed496e72bd870b8b3

  • SHA256

    8a20bae575cc7ff740167b2b05c645f2f0142e4d75da55b2bfcf53a472419077

  • SHA512

    1f4b71038ce22639187ade33f1b9a17f524a945bb07a02a74165cce64e6b8453baf4f5dbc476d0ab9d4ba0bc2f000fca982df2e720bd6a88e53bb6dcd1874812

  • SSDEEP

    1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCc:enaypQSoskv

Malware Config

Targets

    • Target

      4d0f4bee023ea2d1ab1b0ece45891ed0N.exe

    • Size

      69KB

    • MD5

      4d0f4bee023ea2d1ab1b0ece45891ed0

    • SHA1

      3f4b1dcd945092ac4b0d9b1ed496e72bd870b8b3

    • SHA256

      8a20bae575cc7ff740167b2b05c645f2f0142e4d75da55b2bfcf53a472419077

    • SHA512

      1f4b71038ce22639187ade33f1b9a17f524a945bb07a02a74165cce64e6b8453baf4f5dbc476d0ab9d4ba0bc2f000fca982df2e720bd6a88e53bb6dcd1874812

    • SSDEEP

      1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8Q8/8fCc:enaypQSoskv

    • Renames multiple (3173) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks