Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0467360fd2dc07b95e18c298ec42a190N.exe

  • Size

    90KB

  • Sample

    240828-2bpj5szbkb

  • MD5

    0467360fd2dc07b95e18c298ec42a190

  • SHA1

    b0aa6323703b0f4aab70587b702aa62ee8cbb6ef

  • SHA256

    b2be69124c1430e2351180331fba7f9c5e764d363bf420b77a7fa7aa6a202434

  • SHA512

    722435340653fa3deee1638ca78d0a86607961b0bca3fe20086272dcb9017df01d7acff434ea5542b15cc502493cc4c02a177b6aaf4c2fdf0fd30caac1f480a6

  • SSDEEP

    1536:W7ZhA7pApw03vR03v4Yg7ZhA7pApw03vR03v4YQ:6e7WpwYRY4Yge7WpwYRY4YQ

Score
9/10

Malware Config

Targets

    • Target

      0467360fd2dc07b95e18c298ec42a190N.exe

    • Size

      90KB

    • MD5

      0467360fd2dc07b95e18c298ec42a190

    • SHA1

      b0aa6323703b0f4aab70587b702aa62ee8cbb6ef

    • SHA256

      b2be69124c1430e2351180331fba7f9c5e764d363bf420b77a7fa7aa6a202434

    • SHA512

      722435340653fa3deee1638ca78d0a86607961b0bca3fe20086272dcb9017df01d7acff434ea5542b15cc502493cc4c02a177b6aaf4c2fdf0fd30caac1f480a6

    • SSDEEP

      1536:W7ZhA7pApw03vR03v4Yg7ZhA7pApw03vR03v4YQ:6e7WpwYRY4Yge7WpwYRY4YQ

    Score
    9/10
    • Renames multiple (326) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks