Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
Trojan.Danger.ATA_virussign.com_27c29fc73e8930b27cd405ce257222c0.exe
-
Size
62KB
-
Sample
240907-py4alawbln
-
MD5
27c29fc73e8930b27cd405ce257222c0
-
SHA1
eeff1fc52df35f8efaaa672799e832b2b1a4c747
-
SHA256
10a28da80db0af3e201bfb776a055848068180e2cbbf47934f9266c9bfda733e
-
SHA512
4d2362e69b24c04adc8a1cba25cdd14adfff8b29fbb8e5f16c8be7b42699f38618476723daa2d7e3ddc1f80be0a241c3819fc4dfefc17a09be8cf65472372035
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcI9SBo7Bomu1J4x:V7Zf/FAxTWoJJ7TFuz4x
Behavioral task
behavioral1
Sample
Trojan.Danger.ATA_virussign.com_27c29fc73e8930b27cd405ce257222c0.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Trojan.Danger.ATA_virussign.com_27c29fc73e8930b27cd405ce257222c0.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
Trojan.Danger.ATA_virussign.com_27c29fc73e8930b27cd405ce257222c0.exe
-
Size
62KB
-
MD5
27c29fc73e8930b27cd405ce257222c0
-
SHA1
eeff1fc52df35f8efaaa672799e832b2b1a4c747
-
SHA256
10a28da80db0af3e201bfb776a055848068180e2cbbf47934f9266c9bfda733e
-
SHA512
4d2362e69b24c04adc8a1cba25cdd14adfff8b29fbb8e5f16c8be7b42699f38618476723daa2d7e3ddc1f80be0a241c3819fc4dfefc17a09be8cf65472372035
-
SSDEEP
768:V7Blpf/FAK65euBT37CPKKQSjyJJ1EXBwzEXBwdcMcI9SBo7Bomu1J4x:V7Zf/FAxTWoJJ7TFuz4x
Score9/10-
Renames multiple (3442) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-