Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4d28711f21375f36d439c5df7fa10a10N.exe
-
Size
92KB
-
Sample
240820-h55zfatbml
-
MD5
4d28711f21375f36d439c5df7fa10a10
-
SHA1
360c45a74fbc0332acf8544ee4d9e4506b8be066
-
SHA256
2393ccbab07859d4dbaf27845e1d4352170c3a472da8ba11056ae523248ac3b5
-
SHA512
931c3f74ffad82eeaabd4d6b5db39ec27fc1857b273dbaf295fea28627a1c7a7e66622372f4d0afeffa309c0e7967d91cda39a986719c34bf743e83a160f64d8
-
SSDEEP
1536:W7ZhA7pApw03vR03vcltdtSsC7ZhA7pApw03vR03vcltdtSsk:6e7WpwYRYUtdtSsGe7WpwYRYUtdtSsk
Static task
static1
Behavioral task
behavioral1
Sample
4d28711f21375f36d439c5df7fa10a10N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
4d28711f21375f36d439c5df7fa10a10N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
4d28711f21375f36d439c5df7fa10a10N.exe
-
Size
92KB
-
MD5
4d28711f21375f36d439c5df7fa10a10
-
SHA1
360c45a74fbc0332acf8544ee4d9e4506b8be066
-
SHA256
2393ccbab07859d4dbaf27845e1d4352170c3a472da8ba11056ae523248ac3b5
-
SHA512
931c3f74ffad82eeaabd4d6b5db39ec27fc1857b273dbaf295fea28627a1c7a7e66622372f4d0afeffa309c0e7967d91cda39a986719c34bf743e83a160f64d8
-
SSDEEP
1536:W7ZhA7pApw03vR03vcltdtSsC7ZhA7pApw03vR03vcltdtSsk:6e7WpwYRYUtdtSsGe7WpwYRYUtdtSsk
Score9/10-
Renames multiple (4270) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-