Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16dff8bc7961e4b6a64cec93fcb80540N.exe

  • Size

    33KB

  • Sample

    240825-w1czraxfkg

  • MD5

    16dff8bc7961e4b6a64cec93fcb80540

  • SHA1

    87a5c36bf285ed1bf30a3533256572bc56239e06

  • SHA256

    3f592f5fb10f63081efcb866540f9f1e9d5db254f77f7b8c03fecf0f36edafaf

  • SHA512

    5247296bb9b08d3fd2fac17dd57a4eb786a74152b6ffc6766a729900af089149c56c30b334c38b464c52eaa38aae7ca9c3ed38c117d472c3af0ad2063d472146

  • SSDEEP

    384:QOlIBXDaU7CPKK0TIhfJJPbUSzsOVCjT+:kBT37CPKKdJJTUNOQT+

Malware Config

Targets

    • Target

      16dff8bc7961e4b6a64cec93fcb80540N.exe

    • Size

      33KB

    • MD5

      16dff8bc7961e4b6a64cec93fcb80540

    • SHA1

      87a5c36bf285ed1bf30a3533256572bc56239e06

    • SHA256

      3f592f5fb10f63081efcb866540f9f1e9d5db254f77f7b8c03fecf0f36edafaf

    • SHA512

      5247296bb9b08d3fd2fac17dd57a4eb786a74152b6ffc6766a729900af089149c56c30b334c38b464c52eaa38aae7ca9c3ed38c117d472c3af0ad2063d472146

    • SSDEEP

      384:QOlIBXDaU7CPKK0TIhfJJPbUSzsOVCjT+:kBT37CPKKdJJTUNOQT+

    • Renames multiple (3353) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks