Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0467360fd2dc07b95e18c298ec42a190N.exe
-
Size
90KB
-
Sample
240828-2bpj5szbkb
-
MD5
0467360fd2dc07b95e18c298ec42a190
-
SHA1
b0aa6323703b0f4aab70587b702aa62ee8cbb6ef
-
SHA256
b2be69124c1430e2351180331fba7f9c5e764d363bf420b77a7fa7aa6a202434
-
SHA512
722435340653fa3deee1638ca78d0a86607961b0bca3fe20086272dcb9017df01d7acff434ea5542b15cc502493cc4c02a177b6aaf4c2fdf0fd30caac1f480a6
-
SSDEEP
1536:W7ZhA7pApw03vR03v4Yg7ZhA7pApw03vR03v4YQ:6e7WpwYRY4Yge7WpwYRY4YQ
Static task
static1
Behavioral task
behavioral1
Sample
0467360fd2dc07b95e18c298ec42a190N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
0467360fd2dc07b95e18c298ec42a190N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
0467360fd2dc07b95e18c298ec42a190N.exe
-
Size
90KB
-
MD5
0467360fd2dc07b95e18c298ec42a190
-
SHA1
b0aa6323703b0f4aab70587b702aa62ee8cbb6ef
-
SHA256
b2be69124c1430e2351180331fba7f9c5e764d363bf420b77a7fa7aa6a202434
-
SHA512
722435340653fa3deee1638ca78d0a86607961b0bca3fe20086272dcb9017df01d7acff434ea5542b15cc502493cc4c02a177b6aaf4c2fdf0fd30caac1f480a6
-
SSDEEP
1536:W7ZhA7pApw03vR03v4Yg7ZhA7pApw03vR03v4YQ:6e7WpwYRY4Yge7WpwYRY4YQ
Score9/10-
Renames multiple (326) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-