Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

7

db9ba5c012...52.exe

windows7-x64

9

db9ba5c012...52.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    db9ba5c0122d8d9eaec043f07f9e1c4751d9e93af7df30b4f7e71dbbdc156d52

  • Size

    66KB

  • Sample

    240829-eenqpathlk

  • MD5

    0582f930f358d0fcd2128000b0b6a617

  • SHA1

    d3d0d1f850b00c62b25cc55978b2269573e28115

  • SHA256

    db9ba5c0122d8d9eaec043f07f9e1c4751d9e93af7df30b4f7e71dbbdc156d52

  • SHA512

    a20d0460c606d62b4c91a9ea1d4137177bedd77c305c2ab7dd6cd9b08e7d5e9cbb145424c0272bae681bb8115c48efa43e4b1b3eb2ed0abf6a264540caaa57ac

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcwBcCBcw/tio/tih3y3uP9+:V7Zf/FAxTWoJJ7TTQoQh3y3vwOgrwOgH

Score
9/10
discoveryransomwareupx

Malware Config

Targets

    • Target

      db9ba5c0122d8d9eaec043f07f9e1c4751d9e93af7df30b4f7e71dbbdc156d52

    • Size

      66KB

    • MD5

      0582f930f358d0fcd2128000b0b6a617

    • SHA1

      d3d0d1f850b00c62b25cc55978b2269573e28115

    • SHA256

      db9ba5c0122d8d9eaec043f07f9e1c4751d9e93af7df30b4f7e71dbbdc156d52

    • SHA512

      a20d0460c606d62b4c91a9ea1d4137177bedd77c305c2ab7dd6cd9b08e7d5e9cbb145424c0272bae681bb8115c48efa43e4b1b3eb2ed0abf6a264540caaa57ac

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcwBcCBcw/tio/tih3y3uP9+:V7Zf/FAxTWoJJ7TTQoQh3y3vwOgrwOgH

    Score
    9/10
    discoveryransomwareupx

    • Renames multiple (3526) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks