Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ea96c3044e433a9f50c5b3a2ca843e10N.exe

  • Size

    29KB

  • Sample

    240817-pzt4baygmp

  • MD5

    ea96c3044e433a9f50c5b3a2ca843e10

  • SHA1

    8fdf7d39524af7d0962d1f3d45123774454cc22a

  • SHA256

    0f7489e45f1c5b1d4483c3059223c1aece974589022c81e480216f2ac4f15ff1

  • SHA512

    2affa8ac3450f2473afecb65b7784e364c069cb64e1ad196aadce8fe0c67768c92849fe24431176b988aed0d32cc84b31e3da8e4647e86626c856b50fe875d3a

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9mVlSGrPfmPoVlSGrPfmP2:CTW7JJ7ToVYGrPioVYGrPi2

Malware Config

Targets

    • Target

      ea96c3044e433a9f50c5b3a2ca843e10N.exe

    • Size

      29KB

    • MD5

      ea96c3044e433a9f50c5b3a2ca843e10

    • SHA1

      8fdf7d39524af7d0962d1f3d45123774454cc22a

    • SHA256

      0f7489e45f1c5b1d4483c3059223c1aece974589022c81e480216f2ac4f15ff1

    • SHA512

      2affa8ac3450f2473afecb65b7784e364c069cb64e1ad196aadce8fe0c67768c92849fe24431176b988aed0d32cc84b31e3da8e4647e86626c856b50fe875d3a

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9mVlSGrPfmPoVlSGrPfmP2:CTW7JJ7ToVYGrPioVYGrPi2

    • Renames multiple (3397) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks