Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eb7121a9d986224892ec512a47f41c90N.exe

  • Size

    24KB

  • Sample

    240819-nps8la1hlh

  • MD5

    eb7121a9d986224892ec512a47f41c90

  • SHA1

    5799f071fbd7ea4ec059305c8f47e660dc1b1c32

  • SHA256

    2bb5ab048e6af08e5c35ae3d1aed5810acca1fb552a38fd6232eb5c67085885b

  • SHA512

    d033db1ace9b7bc0e1638099233550b1221a996a41724a4615f182b845d1e46b5dc876299a1ed1aa2bda6b518f976406b89684df6190e20d1230db7b06bd9a15

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI95GbGK:CTW7JJ7To

Malware Config

Targets

    • Target

      eb7121a9d986224892ec512a47f41c90N.exe

    • Size

      24KB

    • MD5

      eb7121a9d986224892ec512a47f41c90

    • SHA1

      5799f071fbd7ea4ec059305c8f47e660dc1b1c32

    • SHA256

      2bb5ab048e6af08e5c35ae3d1aed5810acca1fb552a38fd6232eb5c67085885b

    • SHA512

      d033db1ace9b7bc0e1638099233550b1221a996a41724a4615f182b845d1e46b5dc876299a1ed1aa2bda6b518f976406b89684df6190e20d1230db7b06bd9a15

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI95GbGK:CTW7JJ7To

    • Renames multiple (3781) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks