Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
1aa2ef4b7bf33d9258ef7d7e6fdf4040N.exe
-
Size
30KB
-
Sample
240816-26311stane
-
MD5
1aa2ef4b7bf33d9258ef7d7e6fdf4040
-
SHA1
70a0e7c7618af9c9094d1badbc6f6ab8d789a816
-
SHA256
a84f489740909ac4a9d1b15fed0513c2a888154c73479c81a8b0895650d1495f
-
SHA512
4fea859cdc2c86ed4f48d5e8fbe4291a424bc5268e5e21e5f6fa1551d36e66534571aebe05b7ef37aca93c7a23a723cf3627a0b57d591d265404e260de216bdd
-
SSDEEP
768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQYz:CTW7JJZENTNyQYz
Behavioral task
behavioral1
Sample
1aa2ef4b7bf33d9258ef7d7e6fdf4040N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
1aa2ef4b7bf33d9258ef7d7e6fdf4040N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
1aa2ef4b7bf33d9258ef7d7e6fdf4040N.exe
-
Size
30KB
-
MD5
1aa2ef4b7bf33d9258ef7d7e6fdf4040
-
SHA1
70a0e7c7618af9c9094d1badbc6f6ab8d789a816
-
SHA256
a84f489740909ac4a9d1b15fed0513c2a888154c73479c81a8b0895650d1495f
-
SHA512
4fea859cdc2c86ed4f48d5e8fbe4291a424bc5268e5e21e5f6fa1551d36e66534571aebe05b7ef37aca93c7a23a723cf3627a0b57d591d265404e260de216bdd
-
SSDEEP
768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATNyQYz:CTW7JJZENTNyQYz
Score9/10-
Renames multiple (3461) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-