Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

f03ad07e38...0N.exe

windows7-x64

9

f03ad07e38...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f03ad07e38b3cb3a7d141f08fc3832d0N.exe

  • Size

    42KB

  • Sample

    240816-3c9gdaxbrr

  • MD5

    f03ad07e38b3cb3a7d141f08fc3832d0

  • SHA1

    05d45f7b711ed283ec0e4bce3d2416c1f9aa1e16

  • SHA256

    eb57b7c75d8cd07d0cff9a8ac9e41877869b6b26fa2ee7b498c186f2ecc4867d

  • SHA512

    c3061623ac14bbd7528eb3237de524c71af067b039e9815b64d235e23c8bfc8ec7c8880054f14eb94deba91828ce01a07aa0ca0c483c16ebd99eea4d3a6d19b5

  • SSDEEP

    384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjeYDTcYDTkZX:V7Blpf/FAK65euBT37CPKK0SjA

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      f03ad07e38b3cb3a7d141f08fc3832d0N.exe

    • Size

      42KB

    • MD5

      f03ad07e38b3cb3a7d141f08fc3832d0

    • SHA1

      05d45f7b711ed283ec0e4bce3d2416c1f9aa1e16

    • SHA256

      eb57b7c75d8cd07d0cff9a8ac9e41877869b6b26fa2ee7b498c186f2ecc4867d

    • SHA512

      c3061623ac14bbd7528eb3237de524c71af067b039e9815b64d235e23c8bfc8ec7c8880054f14eb94deba91828ce01a07aa0ca0c483c16ebd99eea4d3a6d19b5

    • SSDEEP

      384:FBt7Br5xjL2Kd5AsAoh6n5eaOlIBXDaU7CPKK0TIh6SjeYDTcYDTkZX:V7Blpf/FAK65euBT37CPKK0SjA

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (337) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks