Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    580e3af0c61ed9a603bf411b5bfe4520N.exe

  • Size

    45KB

  • Sample

    240905-hfkxzawbpb

  • MD5

    580e3af0c61ed9a603bf411b5bfe4520

  • SHA1

    f32bf1aa9928e61a77b20a2fc7b8cecdd4c61583

  • SHA256

    93e0f8da812fbd2eaa70104e5300090c8cad7cf1d58336ea08a28f10fcba15ed

  • SHA512

    7765c6923a3fc1d2b82e1564c637da2bebc28a197d58c7813c78c36ad1e1c547a599c0978ef64a1e5d976a6ac486cafbd9ce6f0f052b54953f7c359e08797523

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcKuU:V7Zf/FAxTWoJJ7TruU

Malware Config

Targets

    • Target

      580e3af0c61ed9a603bf411b5bfe4520N.exe

    • Size

      45KB

    • MD5

      580e3af0c61ed9a603bf411b5bfe4520

    • SHA1

      f32bf1aa9928e61a77b20a2fc7b8cecdd4c61583

    • SHA256

      93e0f8da812fbd2eaa70104e5300090c8cad7cf1d58336ea08a28f10fcba15ed

    • SHA512

      7765c6923a3fc1d2b82e1564c637da2bebc28a197d58c7813c78c36ad1e1c547a599c0978ef64a1e5d976a6ac486cafbd9ce6f0f052b54953f7c359e08797523

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcKuU:V7Zf/FAxTWoJJ7TruU

    • Renames multiple (3450) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks