Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

1b770bcf96...c9.exe

windows7-x64

9

1b770bcf96...c9.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1b770bcf965ba0580c878b0f6ed03c8e19548cc66fa32d570b906d7e7582b6c9

  • Size

    83KB

  • Sample

    240814-x2eemszbkh

  • MD5

    4367b48945b5c5176fc7ea4cc52c38fc

  • SHA1

    77f5a19b0fcc8ce5077605d6a595b4c3a158dc24

  • SHA256

    1b770bcf965ba0580c878b0f6ed03c8e19548cc66fa32d570b906d7e7582b6c9

  • SHA512

    df18cb4abd9277f9d3434dceea876fd16806eb54a3809bc1e317d6b1f5806541bb26cefa6cc0a9c3380a525a3c4b5e6f9008be98b136430ca64eb27fdb0615e3

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxQiKJAWJAC:fnyiQSop

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      1b770bcf965ba0580c878b0f6ed03c8e19548cc66fa32d570b906d7e7582b6c9

    • Size

      83KB

    • MD5

      4367b48945b5c5176fc7ea4cc52c38fc

    • SHA1

      77f5a19b0fcc8ce5077605d6a595b4c3a158dc24

    • SHA256

      1b770bcf965ba0580c878b0f6ed03c8e19548cc66fa32d570b906d7e7582b6c9

    • SHA512

      df18cb4abd9277f9d3434dceea876fd16806eb54a3809bc1e317d6b1f5806541bb26cefa6cc0a9c3380a525a3c4b5e6f9008be98b136430ca64eb27fdb0615e3

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8zxQiKJAWJAC:fnyiQSop

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3497) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks