Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc85ef1ca1bd25df81f1fa7b26a95240N.exe

  • Size

    181KB

  • Sample

    240818-n3j7vasfpb

  • MD5

    dc85ef1ca1bd25df81f1fa7b26a95240

  • SHA1

    593df2cac733de02d19f5fb684b28caff837b86a

  • SHA256

    019caf68ad23ee37de63db38203173ee040db5aae8ffe7cecc92dd091a20f342

  • SHA512

    c555f2b41f66ae12ad01ec69c20e99f3c684bd341d86b51dfe45c1046dbc1a5c91e862719a486bc1f6c3d16f0d1c4ab6a16e48b92db74cf100b4de944c630482

  • SSDEEP

    3072:6e7WpMaxeb0CYJ97lEYNR73e+eGGMmae7WpMaxeb0CYJ97lEYNR73e+eGGMmo:RqKvb0CYJ973e+eGGMmxqKvb0CYJ973h

Score
9/10

Malware Config

Targets

    • Target

      dc85ef1ca1bd25df81f1fa7b26a95240N.exe

    • Size

      181KB

    • MD5

      dc85ef1ca1bd25df81f1fa7b26a95240

    • SHA1

      593df2cac733de02d19f5fb684b28caff837b86a

    • SHA256

      019caf68ad23ee37de63db38203173ee040db5aae8ffe7cecc92dd091a20f342

    • SHA512

      c555f2b41f66ae12ad01ec69c20e99f3c684bd341d86b51dfe45c1046dbc1a5c91e862719a486bc1f6c3d16f0d1c4ab6a16e48b92db74cf100b4de944c630482

    • SSDEEP

      3072:6e7WpMaxeb0CYJ97lEYNR73e+eGGMmae7WpMaxeb0CYJ97lEYNR73e+eGGMmo:RqKvb0CYJ973e+eGGMmxqKvb0CYJ973h

    Score
    9/10
    • Renames multiple (3595) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks