Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dfa71a1a890546d1e86ad1a12db7e1b0N.exe
-
Size
41KB
-
Sample
240820-m7khqsxhph
-
MD5
dfa71a1a890546d1e86ad1a12db7e1b0
-
SHA1
3d69ec4511f2afa8d5ac155620af2b516b3ab1dd
-
SHA256
aa8f4a13205190926e71000ba341d84b28893760891905f1280f0de00941bd56
-
SHA512
dd66b5f9ce3ee92e6ae689db518d463926a88017516d915ce94b0797ffc0b285ce6bd347c4901c370537ded0ae0f4a19c9c6f14f91366fc12cf75e620b691f4c
-
SSDEEP
768:W7BlphA7pARFbhM0Kkq81LOyq81LObC8p8ON4:W7ZhA7pApM21LOA1LOPN4
Static task
static1
Behavioral task
behavioral1
Sample
dfa71a1a890546d1e86ad1a12db7e1b0N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
dfa71a1a890546d1e86ad1a12db7e1b0N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
dfa71a1a890546d1e86ad1a12db7e1b0N.exe
-
Size
41KB
-
MD5
dfa71a1a890546d1e86ad1a12db7e1b0
-
SHA1
3d69ec4511f2afa8d5ac155620af2b516b3ab1dd
-
SHA256
aa8f4a13205190926e71000ba341d84b28893760891905f1280f0de00941bd56
-
SHA512
dd66b5f9ce3ee92e6ae689db518d463926a88017516d915ce94b0797ffc0b285ce6bd347c4901c370537ded0ae0f4a19c9c6f14f91366fc12cf75e620b691f4c
-
SSDEEP
768:W7BlphA7pARFbhM0Kkq81LOyq81LObC8p8ON4:W7ZhA7pApM21LOA1LOPN4
Score9/10-
Renames multiple (330) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-