Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    22bd1e810e86106c29e7d50e558d0780N.exe

  • Size

    85KB

  • Sample

    240829-gdkczswdrh

  • MD5

    22bd1e810e86106c29e7d50e558d0780

  • SHA1

    82748748ccec06713e72707ba1206859277c3b50

  • SHA256

    9795c2c45110ae29c7512e7895d4f40c65c1b472549b75542c1c332faf6795c5

  • SHA512

    10ff9d44e4258081eba747c55186eb005e72ed7244afb83e5f180a60f64bf78c1f13bb7d648be97e6705233d7d628bc501b115e2d08bce0bd5aaa8c677f9ff45

  • SSDEEP

    1536:V7Zf/FAxTWoJJZENTNyoKIKMYTW7JJZENTNyoKIKM2:fny1tE5KIKQtE5KIKp

Malware Config

Targets

    • Target

      22bd1e810e86106c29e7d50e558d0780N.exe

    • Size

      85KB

    • MD5

      22bd1e810e86106c29e7d50e558d0780

    • SHA1

      82748748ccec06713e72707ba1206859277c3b50

    • SHA256

      9795c2c45110ae29c7512e7895d4f40c65c1b472549b75542c1c332faf6795c5

    • SHA512

      10ff9d44e4258081eba747c55186eb005e72ed7244afb83e5f180a60f64bf78c1f13bb7d648be97e6705233d7d628bc501b115e2d08bce0bd5aaa8c677f9ff45

    • SSDEEP

      1536:V7Zf/FAxTWoJJZENTNyoKIKMYTW7JJZENTNyoKIKM2:fny1tE5KIKQtE5KIKp

    • Renames multiple (2918) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks