Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c84563325270cad48a25c2945a2156e0N.exe

  • Size

    81KB

  • Sample

    240817-tr9k9avcpe

  • MD5

    c84563325270cad48a25c2945a2156e0

  • SHA1

    373f03db819c4b0c47bf1d5e702f7417366fb085

  • SHA256

    2cb419b629dbab768641ac57b69b7fdcb5020c0e20620518c753d734309713ea

  • SHA512

    acb33627668438c4e06ead2e990b6e8da95d32eab1838a53cc716befac1c948cf24946760fede7de6351208d415adedc41ce6dc2f2da7837c2c9831a146a6668

  • SSDEEP

    1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8IZR9TZi9TZ2:fnyiQSo7ZTZcZ2

Malware Config

Targets

    • Target

      c84563325270cad48a25c2945a2156e0N.exe

    • Size

      81KB

    • MD5

      c84563325270cad48a25c2945a2156e0

    • SHA1

      373f03db819c4b0c47bf1d5e702f7417366fb085

    • SHA256

      2cb419b629dbab768641ac57b69b7fdcb5020c0e20620518c753d734309713ea

    • SHA512

      acb33627668438c4e06ead2e990b6e8da95d32eab1838a53cc716befac1c948cf24946760fede7de6351208d415adedc41ce6dc2f2da7837c2c9831a146a6668

    • SSDEEP

      1536:V7Zf/FAxTWY1++PJHJXA/OsIZfzc3/Q8IZR9TZi9TZ2:fnyiQSo7ZTZcZ2

    • Renames multiple (2920) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks