Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    588391e504a137bb2b5361c72f3ea300N.exe

  • Size

    136KB

  • Sample

    240819-d4r9qswakn

  • MD5

    588391e504a137bb2b5361c72f3ea300

  • SHA1

    694ac119efd5b9b85247455a54251709f894abc4

  • SHA256

    d4e8c0fde24a094bb40ecd1db88144c4f97db222105a9684005215d2cc6dc0e1

  • SHA512

    905e91a711ce9dc4467e0ae2cb5adcb7cd1c9bb7910b8b0d21712d4174fed905719fe0682c9ae5e52a450c837e0f8cda6a825b3754113508722ba0b7a00f36b0

  • SSDEEP

    3072:62ssWpcU7lK1lKgkA2ssWpcU7lK1lKgk4:MVyU7lK1lKOVyU7lK1lKY

Score
9/10

Malware Config

Targets

    • Target

      588391e504a137bb2b5361c72f3ea300N.exe

    • Size

      136KB

    • MD5

      588391e504a137bb2b5361c72f3ea300

    • SHA1

      694ac119efd5b9b85247455a54251709f894abc4

    • SHA256

      d4e8c0fde24a094bb40ecd1db88144c4f97db222105a9684005215d2cc6dc0e1

    • SHA512

      905e91a711ce9dc4467e0ae2cb5adcb7cd1c9bb7910b8b0d21712d4174fed905719fe0682c9ae5e52a450c837e0f8cda6a825b3754113508722ba0b7a00f36b0

    • SSDEEP

      3072:62ssWpcU7lK1lKgkA2ssWpcU7lK1lKgk4:MVyU7lK1lKOVyU7lK1lKY

    Score
    9/10
    • Renames multiple (3764) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks