Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

fc37d0ba72...0N.exe

windows7-x64

9

fc37d0ba72...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fc37d0ba72a83a93ac05c864dd23d760N.exe

  • Size

    123KB

  • Sample

    240829-b3m8aaxdld

  • MD5

    fc37d0ba72a83a93ac05c864dd23d760

  • SHA1

    c79bab926df2a0487395d66f1f1827f224b6eab1

  • SHA256

    3ca955af10caf486f80c805baa23df8e4c5da5557c067c2e22f202020d0d3285

  • SHA512

    77df1722a9d5e0d85f3f39c0793e0c6bbd98a4c074a7bc3d22f17c3c907e0c201a9312ce97cdf3bc1db9eee5884f62018675594a4c5d8de0dba1e20d0cc04bca

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY5UTWn1++PJHJXA/OsIZfzc3/Q8zxY5twd:KQSox5EQSox5twd

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      fc37d0ba72a83a93ac05c864dd23d760N.exe

    • Size

      123KB

    • MD5

      fc37d0ba72a83a93ac05c864dd23d760

    • SHA1

      c79bab926df2a0487395d66f1f1827f224b6eab1

    • SHA256

      3ca955af10caf486f80c805baa23df8e4c5da5557c067c2e22f202020d0d3285

    • SHA512

      77df1722a9d5e0d85f3f39c0793e0c6bbd98a4c074a7bc3d22f17c3c907e0c201a9312ce97cdf3bc1db9eee5884f62018675594a4c5d8de0dba1e20d0cc04bca

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY5UTWn1++PJHJXA/OsIZfzc3/Q8zxY5twd:KQSox5EQSox5twd

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (4953) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks