Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    48d20519dac130a2199e6c736f2b5200N.exe

  • Size

    120KB

  • Sample

    240820-jw8vea1dlg

  • MD5

    48d20519dac130a2199e6c736f2b5200

  • SHA1

    6570e6a216d8e2125bef8438610deae166a8743d

  • SHA256

    46c36ddc688d45dd247813f81b5c913709ef08849fb08fd7779d2be9af12f8d8

  • SHA512

    7e8b533a82a88ade2d5ba387192b16267bff4d255831606a68b7c71d6f51bb99cb9773564f50f8d5e84365a17d5b506cd185230a10262a2032c43f9f93c1ce0f

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpX2/Nw/NwmxO7ZppApBULcfpHLcfpX2/Nw/Nwmxt:6pWpBwchcV2WxypWpBwchcV2Wxt

Score
9/10

Malware Config

Targets

    • Target

      48d20519dac130a2199e6c736f2b5200N.exe

    • Size

      120KB

    • MD5

      48d20519dac130a2199e6c736f2b5200

    • SHA1

      6570e6a216d8e2125bef8438610deae166a8743d

    • SHA256

      46c36ddc688d45dd247813f81b5c913709ef08849fb08fd7779d2be9af12f8d8

    • SHA512

      7e8b533a82a88ade2d5ba387192b16267bff4d255831606a68b7c71d6f51bb99cb9773564f50f8d5e84365a17d5b506cd185230a10262a2032c43f9f93c1ce0f

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpX2/Nw/NwmxO7ZppApBULcfpHLcfpX2/Nw/Nwmxt:6pWpBwchcV2WxypWpBwchcV2Wxt

    Score
    9/10
    • Renames multiple (4368) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks