Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
672b7133a313afd9ec5178569a8bb170N.exe
-
Size
75KB
-
Sample
240818-kq132swajb
-
MD5
672b7133a313afd9ec5178569a8bb170
-
SHA1
9ba858230c3e0df0bd652767bff92da8f0a7fd4b
-
SHA256
81b2ee8ad7826f1ac7fa1a9d4367a32a0c73fe2fb01d0930401d85e41f0cbaf0
-
SHA512
8fcd63471bd3b57759e574f5776ce3fbcca200e63dba2a098e059bce1092403cf327cbfecf3d88efa90df9a9275829912b9e0630c80824ebf14eadfcc1535a77
-
SSDEEP
1536:/7ZQpApze+eJfFpsJOfFpsJ5DVSWu0SWut:9QWpze+eJfFpsJOfFpsJ5DVSWu0SWut
Static task
static1
Behavioral task
behavioral1
Sample
672b7133a313afd9ec5178569a8bb170N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
672b7133a313afd9ec5178569a8bb170N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
672b7133a313afd9ec5178569a8bb170N.exe
-
Size
75KB
-
MD5
672b7133a313afd9ec5178569a8bb170
-
SHA1
9ba858230c3e0df0bd652767bff92da8f0a7fd4b
-
SHA256
81b2ee8ad7826f1ac7fa1a9d4367a32a0c73fe2fb01d0930401d85e41f0cbaf0
-
SHA512
8fcd63471bd3b57759e574f5776ce3fbcca200e63dba2a098e059bce1092403cf327cbfecf3d88efa90df9a9275829912b9e0630c80824ebf14eadfcc1535a77
-
SSDEEP
1536:/7ZQpApze+eJfFpsJOfFpsJ5DVSWu0SWut:9QWpze+eJfFpsJOfFpsJ5DVSWu0SWut
Score9/10-
Renames multiple (3109) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-