Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e2e03ff23254888f9cfce049d00210b0N.exe
-
Size
169KB
-
Sample
240818-dk2n3avdqj
-
MD5
e2e03ff23254888f9cfce049d00210b0
-
SHA1
b26587fca99425b02d405f176a3d3f7e6c4f163a
-
SHA256
d4de936b19509d6f7df0dbdf6b8c11a120fa366079db130cbb5b03faec486df8
-
SHA512
5671e422dfb125e21d5705e02b2d3e09b82efd6964da2691662869f148f5338fa469f1371597e65a719938f454f5e3bba3440c3e9e6b2ec3caf3aab240410f87
-
SSDEEP
1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8zx3Y3hx+fsio5UxKzWZ64+A8C4bwy:enaypQSo6VEio5Ua4NO
Behavioral task
behavioral1
Sample
e2e03ff23254888f9cfce049d00210b0N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
e2e03ff23254888f9cfce049d00210b0N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
e2e03ff23254888f9cfce049d00210b0N.exe
-
Size
169KB
-
MD5
e2e03ff23254888f9cfce049d00210b0
-
SHA1
b26587fca99425b02d405f176a3d3f7e6c4f163a
-
SHA256
d4de936b19509d6f7df0dbdf6b8c11a120fa366079db130cbb5b03faec486df8
-
SHA512
5671e422dfb125e21d5705e02b2d3e09b82efd6964da2691662869f148f5338fa469f1371597e65a719938f454f5e3bba3440c3e9e6b2ec3caf3aab240410f87
-
SSDEEP
1536:a7ZyqaFAxTWH1++PJHJXA/OsIZfzc3/Q8zx3Y3hx+fsio5UxKzWZ64+A8C4bwy:enaypQSo6VEio5Ua4NO
Score9/10-
Renames multiple (2784) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-