Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4024ae7fdf1df62f2143e7f8b702f890N.exe

  • Size

    179KB

  • Sample

    240904-san3jssejp

  • MD5

    4024ae7fdf1df62f2143e7f8b702f890

  • SHA1

    942e9de4f350a1a7629f75e1d9b097de1b8814c2

  • SHA256

    64f116aeffdd662369b5bb3fc08c7254b9e6073a1fb504b469b5d582a83ebd51

  • SHA512

    81f67f2a03e3d0bc71e107ae6e648641eb5bd360dc9d811c9d0c046cb010407fa09ea777a5d2c15974482d28dd29770b810fdc1b5c534bdf6b24d429656eb570

  • SSDEEP

    3072:62ssWpcU7lK1lKgkh02ssWpcU7lK1lKgkhZ:MVyU7lK1lKYVyU7lK1lKH

Score
9/10

Malware Config

Targets

    • Target

      4024ae7fdf1df62f2143e7f8b702f890N.exe

    • Size

      179KB

    • MD5

      4024ae7fdf1df62f2143e7f8b702f890

    • SHA1

      942e9de4f350a1a7629f75e1d9b097de1b8814c2

    • SHA256

      64f116aeffdd662369b5bb3fc08c7254b9e6073a1fb504b469b5d582a83ebd51

    • SHA512

      81f67f2a03e3d0bc71e107ae6e648641eb5bd360dc9d811c9d0c046cb010407fa09ea777a5d2c15974482d28dd29770b810fdc1b5c534bdf6b24d429656eb570

    • SSDEEP

      3072:62ssWpcU7lK1lKgkh02ssWpcU7lK1lKgkhZ:MVyU7lK1lKYVyU7lK1lKH

    Score
    9/10
    • Renames multiple (3120) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks