Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    05269738c33e79f7aee25c24b724e980N.exe

  • Size

    124KB

  • Sample

    240819-raecns1erj

  • MD5

    05269738c33e79f7aee25c24b724e980

  • SHA1

    7740f65a57bceebdb7e52ce66fc3491fd4fb2856

  • SHA256

    2acf1d5a0609c2459446e8f8bd8312587b645c07484090cffac3ed4c6a1193ec

  • SHA512

    04a15dc585472fdd6c891cddc26d2f07f68427034be37d8ad2d7fe4cb9c498aaeff711fc8aaec9366ddcdf1c519f1f7a29b9532774ead5e5ab2c54c71a062293

  • SSDEEP

    3072:62ssWpcU7lK1lKgkn2ssWpcU7lK1lKgk3:MVyU7lK1lKjVyU7lK1lKX

Score
9/10

Malware Config

Targets

    • Target

      05269738c33e79f7aee25c24b724e980N.exe

    • Size

      124KB

    • MD5

      05269738c33e79f7aee25c24b724e980

    • SHA1

      7740f65a57bceebdb7e52ce66fc3491fd4fb2856

    • SHA256

      2acf1d5a0609c2459446e8f8bd8312587b645c07484090cffac3ed4c6a1193ec

    • SHA512

      04a15dc585472fdd6c891cddc26d2f07f68427034be37d8ad2d7fe4cb9c498aaeff711fc8aaec9366ddcdf1c519f1f7a29b9532774ead5e5ab2c54c71a062293

    • SSDEEP

      3072:62ssWpcU7lK1lKgkn2ssWpcU7lK1lKgk3:MVyU7lK1lKjVyU7lK1lKX

    Score
    9/10
    • Renames multiple (4760) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks