Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ca9d1cdf39b3389cacaba679d22bb0a0N.exe

  • Size

    91KB

  • Sample

    240818-b2ff2s1ekr

  • MD5

    ca9d1cdf39b3389cacaba679d22bb0a0

  • SHA1

    cb72a161d4880209520b448375cf7cb11cd13713

  • SHA256

    97fa5f8416e5775013c3400b9dce787d16d654520606f437b1c27ccdc261523e

  • SHA512

    70cc57128f3a038c4f339cd518722429bd4062b392b5b69e719ea183a8ab006e44af1ad59730055ebd8d8ba41748e21b83ecfb39b2f978ffa74782e329acad49

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTNyl2Sm0mdnwNRTW7JJZENTNyl2Sm0mdnwNc:fny1tE42rnwNatE42rnwNc

Malware Config

Targets

    • Target

      ca9d1cdf39b3389cacaba679d22bb0a0N.exe

    • Size

      91KB

    • MD5

      ca9d1cdf39b3389cacaba679d22bb0a0

    • SHA1

      cb72a161d4880209520b448375cf7cb11cd13713

    • SHA256

      97fa5f8416e5775013c3400b9dce787d16d654520606f437b1c27ccdc261523e

    • SHA512

      70cc57128f3a038c4f339cd518722429bd4062b392b5b69e719ea183a8ab006e44af1ad59730055ebd8d8ba41748e21b83ecfb39b2f978ffa74782e329acad49

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTNyl2Sm0mdnwNRTW7JJZENTNyl2Sm0mdnwNc:fny1tE42rnwNatE42rnwNc

    • Renames multiple (3099) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks