Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

50647aaa99...0N.exe

windows7-x64

9

50647aaa99...0N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    50647aaa99afefe32c4a817a5a796980N.exe

  • Size

    91KB

  • Sample

    240915-ehrxhsvcjh

  • MD5

    50647aaa99afefe32c4a817a5a796980

  • SHA1

    944c6c4b64e43b0391ade15e67a266f05e5e9348

  • SHA256

    634c576f97a632407f113d7728646a1deb026f8c612dd47aaf3a96240fa66d26

  • SHA512

    de7a6092c785b9c8c68d6db7c480c266e85441e85720a81fb7a7737b142f9ddfb1dd75c0a0920f77c74bfd3cda533b2428f559f2b8c955440aeef02b6c3cbc55

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpyDUdyGdyjnKB7ZppApBULcfpHLcfpyDUdyGdyjnKc:6pWpBwchcwDNCpWpBwchcwDNx

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      50647aaa99afefe32c4a817a5a796980N.exe

    • Size

      91KB

    • MD5

      50647aaa99afefe32c4a817a5a796980

    • SHA1

      944c6c4b64e43b0391ade15e67a266f05e5e9348

    • SHA256

      634c576f97a632407f113d7728646a1deb026f8c612dd47aaf3a96240fa66d26

    • SHA512

      de7a6092c785b9c8c68d6db7c480c266e85441e85720a81fb7a7737b142f9ddfb1dd75c0a0920f77c74bfd3cda533b2428f559f2b8c955440aeef02b6c3cbc55

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpyDUdyGdyjnKB7ZppApBULcfpHLcfpyDUdyGdyjnKc:6pWpBwchcwDNCpWpBwchcwDNx

    Score
    9/10
    discoveryransomware

    • Renames multiple (4421) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks