Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ad12de278a0ec6253e387763e66caf464ad2bcd50e210bb17d5b37949b38f5b1.exe

  • Size

    31KB

  • Sample

    240908-egekssvclk

  • MD5

    0a274f0e80259d52ce00b2f116fa9b81

  • SHA1

    c509a8906ba26e773a48884e4c4e00fb9d3c8308

  • SHA256

    ad12de278a0ec6253e387763e66caf464ad2bcd50e210bb17d5b37949b38f5b1

  • SHA512

    3fc97b9c4a801d657e9589c0575909b3afeff2502661d353e6b8fc5e987703c1750bef01e37745ee2e1223d273ec6977ae2eacefabbf64456fce900449484b3a

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9nj40g40T:CTW7JJ7TJLgLT

Malware Config

Targets

    • Target

      ad12de278a0ec6253e387763e66caf464ad2bcd50e210bb17d5b37949b38f5b1.exe

    • Size

      31KB

    • MD5

      0a274f0e80259d52ce00b2f116fa9b81

    • SHA1

      c509a8906ba26e773a48884e4c4e00fb9d3c8308

    • SHA256

      ad12de278a0ec6253e387763e66caf464ad2bcd50e210bb17d5b37949b38f5b1

    • SHA512

      3fc97b9c4a801d657e9589c0575909b3afeff2502661d353e6b8fc5e987703c1750bef01e37745ee2e1223d273ec6977ae2eacefabbf64456fce900449484b3a

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcI9nj40g40T:CTW7JJ7TJLgLT

    • Renames multiple (3685) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks