Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ba34a1c19f0f55ab19d0ff1795abfe90N.exe
-
Size
58KB
-
Sample
240905-f1p2batcqm
-
MD5
ba34a1c19f0f55ab19d0ff1795abfe90
-
SHA1
b52c9a5519026411aa348b25e26e1ac600361fb3
-
SHA256
0062e0f70864a5ac1158452e64034478783430bc3cd5c04f89ad7d59f9b25f64
-
SHA512
5020fd8b190bbe5a5e881882396a93a2f18184c6138082468910871a8b6f63b81c73d8b6955121f7a722075e837bd9ebe070472956b47ae89b6a4341662e3ad5
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBApwp133EskmKw:V7Zf/FAxTWoJJZENTBAOIfmKJfmKy
Behavioral task
behavioral1
Sample
ba34a1c19f0f55ab19d0ff1795abfe90N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ba34a1c19f0f55ab19d0ff1795abfe90N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
ba34a1c19f0f55ab19d0ff1795abfe90N.exe
-
Size
58KB
-
MD5
ba34a1c19f0f55ab19d0ff1795abfe90
-
SHA1
b52c9a5519026411aa348b25e26e1ac600361fb3
-
SHA256
0062e0f70864a5ac1158452e64034478783430bc3cd5c04f89ad7d59f9b25f64
-
SHA512
5020fd8b190bbe5a5e881882396a93a2f18184c6138082468910871a8b6f63b81c73d8b6955121f7a722075e837bd9ebe070472956b47ae89b6a4341662e3ad5
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBApwp133EskmKw:V7Zf/FAxTWoJJZENTBAOIfmKJfmKy
Score9/10-
Renames multiple (3259) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-