Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    9df313b811c103a233498ff7f2c3bb30N.exe

  • Size

    27KB

  • Sample

    240906-ya3htsvajr

  • MD5

    9df313b811c103a233498ff7f2c3bb30

  • SHA1

    ea637da2c01e368ace9d537e5f0ac22d99fdedd3

  • SHA256

    5cafbebcb61bc6fa0b108fcbc955de742cb8164b00b877fe8595795ed741b53d

  • SHA512

    3a3db99bbcbd32b0c793ac0d6e9c5783902c27c5cd60d53317d1fc969adcf6353ec7dd9d99a2ad5f6d2056a5e3e458242d099ced26e0cc5d4db79d9d34e37a23

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9HxwcFn4:CTW7JJ7Twc2

Malware Config

Targets

    • Target

      9df313b811c103a233498ff7f2c3bb30N.exe

    • Size

      27KB

    • MD5

      9df313b811c103a233498ff7f2c3bb30

    • SHA1

      ea637da2c01e368ace9d537e5f0ac22d99fdedd3

    • SHA256

      5cafbebcb61bc6fa0b108fcbc955de742cb8164b00b877fe8595795ed741b53d

    • SHA512

      3a3db99bbcbd32b0c793ac0d6e9c5783902c27c5cd60d53317d1fc969adcf6353ec7dd9d99a2ad5f6d2056a5e3e458242d099ced26e0cc5d4db79d9d34e37a23

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9HxwcFn4:CTW7JJ7Twc2

    • Renames multiple (3455) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks