Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

bb58ccf992...0N.exe

windows7-x64

9

bb58ccf992...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bb58ccf992872bd958c1bf95ec19a4d0N.exe

  • Size

    472KB

  • Sample

    240822-3bqymsshrh

  • MD5

    bb58ccf992872bd958c1bf95ec19a4d0

  • SHA1

    701f9352baad83487b5005383f0cd1facb967118

  • SHA256

    8b82aa0200135238e3b5281750c94714439e8ad62176950733ab0f31c5d6ea10

  • SHA512

    22175c47e58669ea5214184deafaa18313b139909b004e690c522aebf5ebd72c64e48217f41465ed72cbd046b917b524ff4dcc4ce9010f824df48a408030beca

  • SSDEEP

    1536:W7ZhA7pApBt+OKOsZKZZSjw4Vc0VcyN7ZhA7pApBt+OKOsZKZZSjw4Vc0Vcy4:6e7Wp0kDSzTzXe7Wp0kDSzTz4

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      bb58ccf992872bd958c1bf95ec19a4d0N.exe

    • Size

      472KB

    • MD5

      bb58ccf992872bd958c1bf95ec19a4d0

    • SHA1

      701f9352baad83487b5005383f0cd1facb967118

    • SHA256

      8b82aa0200135238e3b5281750c94714439e8ad62176950733ab0f31c5d6ea10

    • SHA512

      22175c47e58669ea5214184deafaa18313b139909b004e690c522aebf5ebd72c64e48217f41465ed72cbd046b917b524ff4dcc4ce9010f824df48a408030beca

    • SSDEEP

      1536:W7ZhA7pApBt+OKOsZKZZSjw4Vc0VcyN7ZhA7pApBt+OKOsZKZZSjw4Vc0Vcy4:6e7Wp0kDSzTzXe7Wp0kDSzTz4

    Score
    9/10
    discoveryransomware

    • Renames multiple (3283) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks