Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f99e9409c751d79295038dad3731f9f0N.exe
-
Size
84KB
-
Sample
240820-cq142syfnd
-
MD5
f99e9409c751d79295038dad3731f9f0
-
SHA1
3778854c22c716dfd1b2f367de33e41a951b1c94
-
SHA256
d3e52e01bde72905202b44be972421c15215015dcfe08f75454daff609d5d3d9
-
SHA512
ab7a8cec17fe396f540ae4bd73850dedb7d65935bee986e075a6d834dc5a15fc33ac213cb033597f162793a03d13bca94dfc33774f572025a5c553dc7072f59f
-
SSDEEP
1536:W7Z+pAp2nKLRKIKqoe7Z+pAp2nKLRKIKqoO:6+Wp2naKIKI+Wp2naKIKg
Static task
static1
Behavioral task
behavioral1
Sample
f99e9409c751d79295038dad3731f9f0N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
f99e9409c751d79295038dad3731f9f0N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
f99e9409c751d79295038dad3731f9f0N.exe
-
Size
84KB
-
MD5
f99e9409c751d79295038dad3731f9f0
-
SHA1
3778854c22c716dfd1b2f367de33e41a951b1c94
-
SHA256
d3e52e01bde72905202b44be972421c15215015dcfe08f75454daff609d5d3d9
-
SHA512
ab7a8cec17fe396f540ae4bd73850dedb7d65935bee986e075a6d834dc5a15fc33ac213cb033597f162793a03d13bca94dfc33774f572025a5c553dc7072f59f
-
SSDEEP
1536:W7Z+pAp2nKLRKIKqoe7Z+pAp2nKLRKIKqoO:6+Wp2naKIKI+Wp2naKIKg
Score9/10-
Renames multiple (4124) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-