Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
954ca6466028eca8d80e7b2ee1c85e60N.exe
-
Size
621KB
-
Sample
240829-erkvkavdpk
-
MD5
954ca6466028eca8d80e7b2ee1c85e60
-
SHA1
ecfe9019cfc51478640ca570f575c56e3e986cec
-
SHA256
ec6082ab581498db0c921c6fe43c625b9d8a66869a6f3e42e25b7d45bd5da990
-
SHA512
d1b3077385fc615b93f629d069859c25f6a23d2f570e280c0ece6d73c794cf0be6d3d93292973feb74a3ce4c9dbb85aa6a7855fc85e282ae65aab94d002b8477
-
SSDEEP
12288:Ck2ZkNvUKvWAWmIJY/83gai1hr/+IRdyC3wy7c6V0wR:CvumKDs4801RIC3f7c6V0w
Static task
static1
Behavioral task
behavioral1
Sample
954ca6466028eca8d80e7b2ee1c85e60N.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
954ca6466028eca8d80e7b2ee1c85e60N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
954ca6466028eca8d80e7b2ee1c85e60N.exe
-
Size
621KB
-
MD5
954ca6466028eca8d80e7b2ee1c85e60
-
SHA1
ecfe9019cfc51478640ca570f575c56e3e986cec
-
SHA256
ec6082ab581498db0c921c6fe43c625b9d8a66869a6f3e42e25b7d45bd5da990
-
SHA512
d1b3077385fc615b93f629d069859c25f6a23d2f570e280c0ece6d73c794cf0be6d3d93292973feb74a3ce4c9dbb85aa6a7855fc85e282ae65aab94d002b8477
-
SSDEEP
12288:Ck2ZkNvUKvWAWmIJY/83gai1hr/+IRdyC3wy7c6V0wR:CvumKDs4801RIC3f7c6V0w
Score9/10-
Renames multiple (1093) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-