Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    098bfbdc31407082435b64093a266e20N.exe

  • Size

    114KB

  • Sample

    240902-c3plsayhqn

  • MD5

    098bfbdc31407082435b64093a266e20

  • SHA1

    dc3817983ec52bf7affbfdccd377392fbd2fc94b

  • SHA256

    4d7954d9a5a74a3db7cc96873f8febbe6084c715dbd1490794a788a42a28849a

  • SHA512

    c911ef0c640ce1beffaaf3d9f894ec4691d2a83270ef9eb4289f69ca11c026a80ef5d26252968d4b875176edc3c74c0fe9e292412c061487a1b8098c4bfc7e2f

  • SSDEEP

    768:W7BlpppARFbhFAxC7ntkntV/fo4o16W7BlpppARFbhFAxC7ntkntV/fo4o16w:W7ZppApryyH16W7ZppApryyH16w

Score
9/10

Malware Config

Targets

    • Target

      098bfbdc31407082435b64093a266e20N.exe

    • Size

      114KB

    • MD5

      098bfbdc31407082435b64093a266e20

    • SHA1

      dc3817983ec52bf7affbfdccd377392fbd2fc94b

    • SHA256

      4d7954d9a5a74a3db7cc96873f8febbe6084c715dbd1490794a788a42a28849a

    • SHA512

      c911ef0c640ce1beffaaf3d9f894ec4691d2a83270ef9eb4289f69ca11c026a80ef5d26252968d4b875176edc3c74c0fe9e292412c061487a1b8098c4bfc7e2f

    • SSDEEP

      768:W7BlpppARFbhFAxC7ntkntV/fo4o16W7BlpppARFbhFAxC7ntkntV/fo4o16w:W7ZppApryyH16W7ZppApryyH16w

    Score
    9/10
    • Renames multiple (3880) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks