Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
07ce8b9aad72708f5b1bb4cd78f2e620N.exe
-
Size
81KB
-
Sample
240829-bk8q9sxhpj
-
MD5
07ce8b9aad72708f5b1bb4cd78f2e620
-
SHA1
8db01d0e3c84704e2a23847ee7d6f62b74fa8478
-
SHA256
6723dcead33da91c2472beaee0bfb93410cea1d7bed7e4c39b0f0a6c955bd332
-
SHA512
6ce079c47f3e8f3d6bd8f9f1b2e23efad3df5e71fa864947a5e787231974980e63c68af4dd8461634f56520ae39aa522db129d0cd6d47c8e904ee9ca39f1066b
-
SSDEEP
1536:W7ZppApB7cnAQanAQq7ZppApB7cnAQanAQBNf:6pWpB7IpWpB7TNf
Static task
static1
Behavioral task
behavioral1
Sample
07ce8b9aad72708f5b1bb4cd78f2e620N.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
07ce8b9aad72708f5b1bb4cd78f2e620N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
07ce8b9aad72708f5b1bb4cd78f2e620N.exe
-
Size
81KB
-
MD5
07ce8b9aad72708f5b1bb4cd78f2e620
-
SHA1
8db01d0e3c84704e2a23847ee7d6f62b74fa8478
-
SHA256
6723dcead33da91c2472beaee0bfb93410cea1d7bed7e4c39b0f0a6c955bd332
-
SHA512
6ce079c47f3e8f3d6bd8f9f1b2e23efad3df5e71fa864947a5e787231974980e63c68af4dd8461634f56520ae39aa522db129d0cd6d47c8e904ee9ca39f1066b
-
SSDEEP
1536:W7ZppApB7cnAQanAQq7ZppApB7cnAQanAQBNf:6pWpB7IpWpB7TNf
Score9/10-
Renames multiple (352) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-