Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ab09fa6ffde15530935106f67d2b4090N.exe

  • Size

    25KB

  • Sample

    240902-p6bkjszhpr

  • MD5

    ab09fa6ffde15530935106f67d2b4090

  • SHA1

    2bb3356c7e15251f838455d4815ac74697363bda

  • SHA256

    b524e3ed3bab2f1183b2a1e4c132992b7b42dd3fbb120a6ef2920c7ab899c99a

  • SHA512

    e9f07b01990b596deb445cb0e3a31694c62a45f77db6b6c88f64bf4ff439f92a47d3bb093bd7c10517b6e09fafb5e239c32734cf8d23980d8c467641d9538cc9

  • SSDEEP

    384:QOlIBXDaU7CPKK0TIhfJJ1Evd5BvhzaM9mSIEvd5BvhzaM9mSsxmMxm9+9O:kBT37CPKKdJJ1EXBwzEXBwdcMcI9O

Malware Config

Targets

    • Target

      ab09fa6ffde15530935106f67d2b4090N.exe

    • Size

      25KB

    • MD5

      ab09fa6ffde15530935106f67d2b4090

    • SHA1

      2bb3356c7e15251f838455d4815ac74697363bda

    • SHA256

      b524e3ed3bab2f1183b2a1e4c132992b7b42dd3fbb120a6ef2920c7ab899c99a

    • SHA512

      e9f07b01990b596deb445cb0e3a31694c62a45f77db6b6c88f64bf4ff439f92a47d3bb093bd7c10517b6e09fafb5e239c32734cf8d23980d8c467641d9538cc9

    • SSDEEP

      384:QOlIBXDaU7CPKK0TIhfJJ1Evd5BvhzaM9mSIEvd5BvhzaM9mSsxmMxm9+9O:kBT37CPKKdJJ1EXBwzEXBwdcMcI9O

    • Renames multiple (527) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks