Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d9c167ceacfe580b5c910cbe850c30f0N.exe

  • Size

    126KB

  • Sample

    240823-yw8xqswcqn

  • MD5

    d9c167ceacfe580b5c910cbe850c30f0

  • SHA1

    8f90cb6946b286a5f2b3fda27ce39fdc2be5d2f5

  • SHA256

    d951ccd2544db65aeb8055b5936426a7e1e8eb2c1feaa9402cd161bfcfc4130e

  • SHA512

    458b5a7881a1ad3ca772a1473d3c27771b927cd3585fa64ab3a42c3da141d5e073d58e7a02243296d80c46cd7e5ebbb69a91063f2c2d4b31cb1437ac7d0c7017

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpX2/Nw/Nwmxd19D7ZppApBULcfpHLcfpX2/Nw/Nwmxd1X:6pWpBwchcV2WxVhpWpBwchcV2WxP

Score
9/10

Malware Config

Targets

    • Target

      d9c167ceacfe580b5c910cbe850c30f0N.exe

    • Size

      126KB

    • MD5

      d9c167ceacfe580b5c910cbe850c30f0

    • SHA1

      8f90cb6946b286a5f2b3fda27ce39fdc2be5d2f5

    • SHA256

      d951ccd2544db65aeb8055b5936426a7e1e8eb2c1feaa9402cd161bfcfc4130e

    • SHA512

      458b5a7881a1ad3ca772a1473d3c27771b927cd3585fa64ab3a42c3da141d5e073d58e7a02243296d80c46cd7e5ebbb69a91063f2c2d4b31cb1437ac7d0c7017

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpX2/Nw/Nwmxd19D7ZppApBULcfpHLcfpX2/Nw/Nwmxd1X:6pWpBwchcV2WxVhpWpBwchcV2WxP

    Score
    9/10
    • Renames multiple (3390) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks