Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    84b7aaee5f15d3239c03f71990bcb0d0N

  • Size

    103KB

  • Sample

    240912-1s14tsxeng

  • MD5

    84b7aaee5f15d3239c03f71990bcb0d0

  • SHA1

    16282446899d45e142ad0f40efd7e57f3cd30543

  • SHA256

    077dd1e088089bb75774cff681def61225019f0c4c84faf44167713fb052e7a3

  • SHA512

    72eae2150382e96be3c6a76f8a41cc95ec75265fbd2a75a16850c0e67197a671d56b50272759edea40970564dc23013332cf71f7494419e5e6d234124f89ad73

  • SSDEEP

    3072:6pWpBwchcwDK9gRoRmpWpBwchcwDK9gRoRM:P+9H+9w

Score
9/10

Malware Config

Targets

    • Target

      84b7aaee5f15d3239c03f71990bcb0d0N

    • Size

      103KB

    • MD5

      84b7aaee5f15d3239c03f71990bcb0d0

    • SHA1

      16282446899d45e142ad0f40efd7e57f3cd30543

    • SHA256

      077dd1e088089bb75774cff681def61225019f0c4c84faf44167713fb052e7a3

    • SHA512

      72eae2150382e96be3c6a76f8a41cc95ec75265fbd2a75a16850c0e67197a671d56b50272759edea40970564dc23013332cf71f7494419e5e6d234124f89ad73

    • SSDEEP

      3072:6pWpBwchcwDK9gRoRmpWpBwchcwDK9gRoRM:P+9H+9w

    Score
    9/10
    • Renames multiple (3892) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks