Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1948a8635f26d201bd33126bfe09c630N

  • Size

    74KB

  • Sample

    240913-j7tjvstekf

  • MD5

    1948a8635f26d201bd33126bfe09c630

  • SHA1

    44b0f5cca51372bb03381c9aa53c3cfdca6fd326

  • SHA256

    5b8722dab09d0eca5d820c08c5c0b1185085cb185174d7eb8a4808cf92b52ef2

  • SHA512

    2df2a3c68a756ab353e3a3428351f6e430545b2121939a69e7dc8c32e6d4d10d67b7bfd9f44ea9202c891aaab6dcfd6e93adc0a34a3fe2086769310459ee3b8a

  • SSDEEP

    768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiSBT37CPKKdJJ1EXBwzEXBwda:CTW7JJ7TTQoQYTW7JJ7TTQoQl

Malware Config

Targets

    • Target

      1948a8635f26d201bd33126bfe09c630N

    • Size

      74KB

    • MD5

      1948a8635f26d201bd33126bfe09c630

    • SHA1

      44b0f5cca51372bb03381c9aa53c3cfdca6fd326

    • SHA256

      5b8722dab09d0eca5d820c08c5c0b1185085cb185174d7eb8a4808cf92b52ef2

    • SHA512

      2df2a3c68a756ab353e3a3428351f6e430545b2121939a69e7dc8c32e6d4d10d67b7bfd9f44ea9202c891aaab6dcfd6e93adc0a34a3fe2086769310459ee3b8a

    • SSDEEP

      768:kBT37CPKKdJJ1EXBwzEXBwdcMcwBcCBcw/tio/tiSBT37CPKKdJJ1EXBwzEXBwda:CTW7JJ7TTQoQYTW7JJ7TTQoQl

    • Renames multiple (3643) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks