Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
7e0c121e073119c5f262bf0c851a31e0N.exe
-
Size
42KB
-
Sample
240904-3rmk6azdlb
-
MD5
7e0c121e073119c5f262bf0c851a31e0
-
SHA1
98b7d5c59852707496bc99c38c1c2fc3121f7bff
-
SHA256
213ee11e9119c34ab802ce7cde3ad54d491ef6576ca5fba19d2112d16759299a
-
SHA512
40720ca12d819dade813ff62ec5c4384c47c0e19a52bb0662b5d907e5665907a574dcb084d33a350bda8872988d78560563448d92c01514f488f863163ed5507
-
SSDEEP
384:yBs7Br5xjL8AgA71FbhvsDYcUYcG0Wp/pHV90TV90O:/7BlpQpARFbhsYcUYcgp/pHVmVr
Static task
static1
Behavioral task
behavioral1
Sample
7e0c121e073119c5f262bf0c851a31e0N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
7e0c121e073119c5f262bf0c851a31e0N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
7e0c121e073119c5f262bf0c851a31e0N.exe
-
Size
42KB
-
MD5
7e0c121e073119c5f262bf0c851a31e0
-
SHA1
98b7d5c59852707496bc99c38c1c2fc3121f7bff
-
SHA256
213ee11e9119c34ab802ce7cde3ad54d491ef6576ca5fba19d2112d16759299a
-
SHA512
40720ca12d819dade813ff62ec5c4384c47c0e19a52bb0662b5d907e5665907a574dcb084d33a350bda8872988d78560563448d92c01514f488f863163ed5507
-
SSDEEP
384:yBs7Br5xjL8AgA71FbhvsDYcUYcG0Wp/pHV90TV90O:/7BlpQpARFbhsYcUYcgp/pHVmVr
Score9/10-
Renames multiple (3440) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-