Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d9c167ceacfe580b5c910cbe850c30f0N.exe
-
Size
126KB
-
Sample
240823-yw8xqswcqn
-
MD5
d9c167ceacfe580b5c910cbe850c30f0
-
SHA1
8f90cb6946b286a5f2b3fda27ce39fdc2be5d2f5
-
SHA256
d951ccd2544db65aeb8055b5936426a7e1e8eb2c1feaa9402cd161bfcfc4130e
-
SHA512
458b5a7881a1ad3ca772a1473d3c27771b927cd3585fa64ab3a42c3da141d5e073d58e7a02243296d80c46cd7e5ebbb69a91063f2c2d4b31cb1437ac7d0c7017
-
SSDEEP
1536:W7ZppApBULcfpHLcfpX2/Nw/Nwmxd19D7ZppApBULcfpHLcfpX2/Nw/Nwmxd1X:6pWpBwchcV2WxVhpWpBwchcV2WxP
Static task
static1
Behavioral task
behavioral1
Sample
d9c167ceacfe580b5c910cbe850c30f0N.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
d9c167ceacfe580b5c910cbe850c30f0N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
d9c167ceacfe580b5c910cbe850c30f0N.exe
-
Size
126KB
-
MD5
d9c167ceacfe580b5c910cbe850c30f0
-
SHA1
8f90cb6946b286a5f2b3fda27ce39fdc2be5d2f5
-
SHA256
d951ccd2544db65aeb8055b5936426a7e1e8eb2c1feaa9402cd161bfcfc4130e
-
SHA512
458b5a7881a1ad3ca772a1473d3c27771b927cd3585fa64ab3a42c3da141d5e073d58e7a02243296d80c46cd7e5ebbb69a91063f2c2d4b31cb1437ac7d0c7017
-
SSDEEP
1536:W7ZppApBULcfpHLcfpX2/Nw/Nwmxd19D7ZppApBULcfpHLcfpX2/Nw/Nwmxd1X:6pWpBwchcV2WxVhpWpBwchcV2WxP
Score9/10-
Renames multiple (3390) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-