Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    91df8df4b130d9416c8538de8d14cd20N.exe

  • Size

    831KB

  • Sample

    240824-f5jp4axblj

  • MD5

    91df8df4b130d9416c8538de8d14cd20

  • SHA1

    025de8329f365f74820097cbc20bf616bd21ab00

  • SHA256

    712aed018c59ac7b053b6dd4c81600ad4bf743f193020c03d59a434d75109cc9

  • SHA512

    d2021c162f9511228896ec552658ffca9ef7fb7c2a044a45297ff3fee01901f562b93ed1289175bdb910e2a5a1234c356c0e3b7246b8c50bddc4ac7f062e467f

  • SSDEEP

    24576:3hV56pKEBhC8iVXrWgqAipHsceoiBX3X+W+s:RV5UPmZrAHfiBHX+WZ

Malware Config

Targets

    • Target

      91df8df4b130d9416c8538de8d14cd20N.exe

    • Size

      831KB

    • MD5

      91df8df4b130d9416c8538de8d14cd20

    • SHA1

      025de8329f365f74820097cbc20bf616bd21ab00

    • SHA256

      712aed018c59ac7b053b6dd4c81600ad4bf743f193020c03d59a434d75109cc9

    • SHA512

      d2021c162f9511228896ec552658ffca9ef7fb7c2a044a45297ff3fee01901f562b93ed1289175bdb910e2a5a1234c356c0e3b7246b8c50bddc4ac7f062e467f

    • SSDEEP

      24576:3hV56pKEBhC8iVXrWgqAipHsceoiBX3X+W+s:RV5UPmZrAHfiBHX+WZ

    • Renames multiple (699) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks