Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    63fe5385a4862d364260d51434e922d0N.exe

  • Size

    92KB

  • Sample

    240905-bnbkya1elf

  • MD5

    63fe5385a4862d364260d51434e922d0

  • SHA1

    3fa4a44e9a881ed617d2f62781829e3bb97d5fd9

  • SHA256

    2e961c7789b16e6b8c61b1be2892eb50e0f64724951d238d20fccaeb1e2093fa

  • SHA512

    6f378c094009ed5d4867c7c2ba00963d1b88d79529bd64eb3c9436ad1434b3eeb57a90a08083aa2aee8c607d3d179ac1b0e153a1ac0318265bbc67d69cd22181

  • SSDEEP

    1536:V7Zf/FAxTWoJJ7Tx4PN54PNKTW7JJ7Tx4PN54PNa:fny1EWLEW0

Malware Config

Targets

    • Target

      63fe5385a4862d364260d51434e922d0N.exe

    • Size

      92KB

    • MD5

      63fe5385a4862d364260d51434e922d0

    • SHA1

      3fa4a44e9a881ed617d2f62781829e3bb97d5fd9

    • SHA256

      2e961c7789b16e6b8c61b1be2892eb50e0f64724951d238d20fccaeb1e2093fa

    • SHA512

      6f378c094009ed5d4867c7c2ba00963d1b88d79529bd64eb3c9436ad1434b3eeb57a90a08083aa2aee8c607d3d179ac1b0e153a1ac0318265bbc67d69cd22181

    • SSDEEP

      1536:V7Zf/FAxTWoJJ7Tx4PN54PNKTW7JJ7Tx4PN54PNa:fny1EWLEW0

    • Renames multiple (3076) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks