Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

098bfbdc31...0N.exe

windows7-x64

9

098bfbdc31...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    098bfbdc31407082435b64093a266e20N.exe

  • Size

    114KB

  • Sample

    240902-c3plsayhqn

  • MD5

    098bfbdc31407082435b64093a266e20

  • SHA1

    dc3817983ec52bf7affbfdccd377392fbd2fc94b

  • SHA256

    4d7954d9a5a74a3db7cc96873f8febbe6084c715dbd1490794a788a42a28849a

  • SHA512

    c911ef0c640ce1beffaaf3d9f894ec4691d2a83270ef9eb4289f69ca11c026a80ef5d26252968d4b875176edc3c74c0fe9e292412c061487a1b8098c4bfc7e2f

  • SSDEEP

    768:W7BlpppARFbhFAxC7ntkntV/fo4o16W7BlpppARFbhFAxC7ntkntV/fo4o16w:W7ZppApryyH16W7ZppApryyH16w

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      098bfbdc31407082435b64093a266e20N.exe

    • Size

      114KB

    • MD5

      098bfbdc31407082435b64093a266e20

    • SHA1

      dc3817983ec52bf7affbfdccd377392fbd2fc94b

    • SHA256

      4d7954d9a5a74a3db7cc96873f8febbe6084c715dbd1490794a788a42a28849a

    • SHA512

      c911ef0c640ce1beffaaf3d9f894ec4691d2a83270ef9eb4289f69ca11c026a80ef5d26252968d4b875176edc3c74c0fe9e292412c061487a1b8098c4bfc7e2f

    • SSDEEP

      768:W7BlpppARFbhFAxC7ntkntV/fo4o16W7BlpppARFbhFAxC7ntkntV/fo4o16w:W7ZppApryyH16W7ZppApryyH16w

    Score
    9/10
    discoveryransomware

    • Renames multiple (3880) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks