Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0532f49d8bc59e312c777d14a0974390N.exe

  • Size

    86KB

  • Sample

    240902-z9jqfaxdrr

  • MD5

    0532f49d8bc59e312c777d14a0974390

  • SHA1

    88edc4a225e5a2d9dd1de3e7c68fb1455cec6bf4

  • SHA256

    d02cc277280d8bd054261a7c05061ab11760f9c139570fbea009c9d64b2ecac2

  • SHA512

    2c737a4c9c628cf6aaf5fca882c871475f71c8d52d183f668338c857ce0bc2721fce8d7f93d1b0539294efedf3768db9008e0af845d46bc12e1aafc6d09ca7b6

  • SSDEEP

    768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzE27Blp2sspARFbh5YSfff9n1T:W7Z2sspAp5YSfffh7Z2sspAp5YSfff7

Score
9/10

Malware Config

Targets

    • Target

      0532f49d8bc59e312c777d14a0974390N.exe

    • Size

      86KB

    • MD5

      0532f49d8bc59e312c777d14a0974390

    • SHA1

      88edc4a225e5a2d9dd1de3e7c68fb1455cec6bf4

    • SHA256

      d02cc277280d8bd054261a7c05061ab11760f9c139570fbea009c9d64b2ecac2

    • SHA512

      2c737a4c9c628cf6aaf5fca882c871475f71c8d52d183f668338c857ce0bc2721fce8d7f93d1b0539294efedf3768db9008e0af845d46bc12e1aafc6d09ca7b6

    • SSDEEP

      768:W7Blp2sspARFbh5YSfff9n1oXKCqzEIn1oXKCqzE27Blp2sspARFbh5YSfff9n1T:W7Z2sspAp5YSfffh7Z2sspAp5YSfff7

    Score
    9/10
    • Renames multiple (4692) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks