Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    54bcb7283519e9d6deb17c5e4e459080N.exe

  • Size

    72KB

  • Sample

    240904-fv2g6awgmg

  • MD5

    54bcb7283519e9d6deb17c5e4e459080

  • SHA1

    bb2b194e3247f746b56a74e28c77121ef2718ab2

  • SHA256

    bc1959566c82a4461153bdc49d86b5b5d42df1c836de40dcfff29cba5d14d751

  • SHA512

    808b3966a3003483172aedf67451a6d95a992ee988fb5ac8fa7ae0efec0c104c3aad236be9a7d32b7085ebae2dd4ae23ac7f235348dcaaaeeac927ab6ff1f035

  • SSDEEP

    1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx4LgLGiSIu2ViSIu2M2v:KQSoFcSG32v

Malware Config

Targets

    • Target

      54bcb7283519e9d6deb17c5e4e459080N.exe

    • Size

      72KB

    • MD5

      54bcb7283519e9d6deb17c5e4e459080

    • SHA1

      bb2b194e3247f746b56a74e28c77121ef2718ab2

    • SHA256

      bc1959566c82a4461153bdc49d86b5b5d42df1c836de40dcfff29cba5d14d751

    • SHA512

      808b3966a3003483172aedf67451a6d95a992ee988fb5ac8fa7ae0efec0c104c3aad236be9a7d32b7085ebae2dd4ae23ac7f235348dcaaaeeac927ab6ff1f035

    • SSDEEP

      1536:CTWn1++PJHJXA/OsIZfzc3/Q8zx4LgLGiSIu2ViSIu2M2v:KQSoFcSG32v

    • Renames multiple (3121) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks