Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    779c75678a9e7eafdb8893fca11eb870N.exe

  • Size

    27KB

  • Sample

    240902-sahkrstdqh

  • MD5

    779c75678a9e7eafdb8893fca11eb870

  • SHA1

    71c72ffe8454e49cba2ffba1ac0ce6dc357b1d0d

  • SHA256

    86e589fcebef31711c7dce1c9fadeac9646a7bd40ac2253b3fac2f8f3baf4fa1

  • SHA512

    427ee33a96ee7d5d5aeff57efd3ef81e61fff8137cf40d943eeadc68b45137c74950a490ccda43943d4cfdffb05c62c8126bf7e913d0f77a99e9f5dd5430cd72

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9bJSsJSNOnOH:CTW7JJ7TFJSsJS1

Malware Config

Targets

    • Target

      779c75678a9e7eafdb8893fca11eb870N.exe

    • Size

      27KB

    • MD5

      779c75678a9e7eafdb8893fca11eb870

    • SHA1

      71c72ffe8454e49cba2ffba1ac0ce6dc357b1d0d

    • SHA256

      86e589fcebef31711c7dce1c9fadeac9646a7bd40ac2253b3fac2f8f3baf4fa1

    • SHA512

      427ee33a96ee7d5d5aeff57efd3ef81e61fff8137cf40d943eeadc68b45137c74950a490ccda43943d4cfdffb05c62c8126bf7e913d0f77a99e9f5dd5430cd72

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9bJSsJSNOnOH:CTW7JJ7TFJSsJS1

    • Renames multiple (3336) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks