Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

bbd9622274...0N.exe

windows7-x64

9

bbd9622274...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bbd9622274814e7c111d3ffb3f1d74e0N

  • Size

    91KB

  • Sample

    240914-3sc34steqm

  • MD5

    bbd9622274814e7c111d3ffb3f1d74e0

  • SHA1

    a9105de161ec5af55848d75b839e61461103ab6c

  • SHA256

    33c4a2ea8aa54e144b647750d211c9b58c57d459be298dcb8eb7cfd5f92c4418

  • SHA512

    f195b5bcc509ad8853d4a1bbc7362a82452194dbaf57211e8a9d7199cefd02d93144cab7704db0e5741dd89051bdf460e63b2e957b1d7441d3d832a8a7308cc4

  • SSDEEP

    768:W7Blp9pARFbhjJQWJQuvGjDE+BqKFkszYUzf2JdmwdAsCeHvJ5YFvqix3DZzmg0i:W7Z9pApjJQWJQVFUgCEHixUPig1juYow

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      bbd9622274814e7c111d3ffb3f1d74e0N

    • Size

      91KB

    • MD5

      bbd9622274814e7c111d3ffb3f1d74e0

    • SHA1

      a9105de161ec5af55848d75b839e61461103ab6c

    • SHA256

      33c4a2ea8aa54e144b647750d211c9b58c57d459be298dcb8eb7cfd5f92c4418

    • SHA512

      f195b5bcc509ad8853d4a1bbc7362a82452194dbaf57211e8a9d7199cefd02d93144cab7704db0e5741dd89051bdf460e63b2e957b1d7441d3d832a8a7308cc4

    • SSDEEP

      768:W7Blp9pARFbhjJQWJQuvGjDE+BqKFkszYUzf2JdmwdAsCeHvJ5YFvqix3DZzmg0i:W7Z9pApjJQWJQVFUgCEHixUPig1juYow

    Score
    9/10
    discoveryransomware

    • Renames multiple (3328) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks