Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

f9135f3216...0N.exe

windows7-x64

9

f9135f3216...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f9135f3216c2ee3b0afedf06c74c6230N.exe

  • Size

    24KB

  • Sample

    240818-ts7haascqf

  • MD5

    f9135f3216c2ee3b0afedf06c74c6230

  • SHA1

    97de6bd99cbc25b1c9c69b5578879426b1a8c9e4

  • SHA256

    16497ebf6c1939d90f685c2cf7cff2b2b9e2a77ae19822d112a0a166e98c7d60

  • SHA512

    f373a996cdc64dc6463438637c3833cd3839eebb5571c21c89b140961ca886b6a02e976d5a6923a916d6a7775cb62cf13f5c7ee107f5ea1ff7f6c815e851767b

  • SSDEEP

    384:QOlIBXDaU7CPKK0TIhfJJ1Evd5BvhzaM9mSIEvd5BvhzaM9mSsxmMxm9+9TNYmAE:kBT37CPKKdJJ1EXBwzEXBwdcMcI9T+MD

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      f9135f3216c2ee3b0afedf06c74c6230N.exe

    • Size

      24KB

    • MD5

      f9135f3216c2ee3b0afedf06c74c6230

    • SHA1

      97de6bd99cbc25b1c9c69b5578879426b1a8c9e4

    • SHA256

      16497ebf6c1939d90f685c2cf7cff2b2b9e2a77ae19822d112a0a166e98c7d60

    • SHA512

      f373a996cdc64dc6463438637c3833cd3839eebb5571c21c89b140961ca886b6a02e976d5a6923a916d6a7775cb62cf13f5c7ee107f5ea1ff7f6c815e851767b

    • SSDEEP

      384:QOlIBXDaU7CPKK0TIhfJJ1Evd5BvhzaM9mSIEvd5BvhzaM9mSsxmMxm9+9TNYmAE:kBT37CPKKdJJ1EXBwzEXBwdcMcI9T+MD

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3447) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks