Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

4d28711f21...0N.exe

windows7-x64

9

4d28711f21...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4d28711f21375f36d439c5df7fa10a10N.exe

  • Size

    92KB

  • Sample

    240820-h55zfatbml

  • MD5

    4d28711f21375f36d439c5df7fa10a10

  • SHA1

    360c45a74fbc0332acf8544ee4d9e4506b8be066

  • SHA256

    2393ccbab07859d4dbaf27845e1d4352170c3a472da8ba11056ae523248ac3b5

  • SHA512

    931c3f74ffad82eeaabd4d6b5db39ec27fc1857b273dbaf295fea28627a1c7a7e66622372f4d0afeffa309c0e7967d91cda39a986719c34bf743e83a160f64d8

  • SSDEEP

    1536:W7ZhA7pApw03vR03vcltdtSsC7ZhA7pApw03vR03vcltdtSsk:6e7WpwYRYUtdtSsGe7WpwYRYUtdtSsk

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      4d28711f21375f36d439c5df7fa10a10N.exe

    • Size

      92KB

    • MD5

      4d28711f21375f36d439c5df7fa10a10

    • SHA1

      360c45a74fbc0332acf8544ee4d9e4506b8be066

    • SHA256

      2393ccbab07859d4dbaf27845e1d4352170c3a472da8ba11056ae523248ac3b5

    • SHA512

      931c3f74ffad82eeaabd4d6b5db39ec27fc1857b273dbaf295fea28627a1c7a7e66622372f4d0afeffa309c0e7967d91cda39a986719c34bf743e83a160f64d8

    • SSDEEP

      1536:W7ZhA7pApw03vR03vcltdtSsC7ZhA7pApw03vR03vcltdtSsk:6e7WpwYRYUtdtSsGe7WpwYRYUtdtSsk

    Score
    9/10
    discoveryransomware

    • Renames multiple (4270) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks