Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2733823f745302cf23ca3e496462b0a0N.exe

  • Size

    97KB

  • Sample

    240825-3c3zla1ejf

  • MD5

    2733823f745302cf23ca3e496462b0a0

  • SHA1

    e809262a95b0d4e83e2ba579b97d54bf1e3440e3

  • SHA256

    bfa674385032f03512067a9c84c082af2772fad8f0f9a7c94f6003a641fc80b0

  • SHA512

    940b9832b5a433f5e10e72c2613a7d7938fe47226dba651fd66c705db2b3f9243960dbb1a5c024664a18e42bb2c2543e77f857a4121674208403cba08ec1ffae

  • SSDEEP

    1536:W7Z9pApjJQWJQOnLmSEd7Z9pApjJQWJQOnLmSE23NIw3NIm:69WpxnK9Wpxnp

Score
9/10

Malware Config

Targets

    • Target

      2733823f745302cf23ca3e496462b0a0N.exe

    • Size

      97KB

    • MD5

      2733823f745302cf23ca3e496462b0a0

    • SHA1

      e809262a95b0d4e83e2ba579b97d54bf1e3440e3

    • SHA256

      bfa674385032f03512067a9c84c082af2772fad8f0f9a7c94f6003a641fc80b0

    • SHA512

      940b9832b5a433f5e10e72c2613a7d7938fe47226dba651fd66c705db2b3f9243960dbb1a5c024664a18e42bb2c2543e77f857a4121674208403cba08ec1ffae

    • SSDEEP

      1536:W7Z9pApjJQWJQOnLmSEd7Z9pApjJQWJQOnLmSE23NIw3NIm:69WpxnK9Wpxnp

    Score
    9/10
    • Renames multiple (4382) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks