Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fdc01f2e1f5115469b0b1a88369fd4fc4c811e79e5626d599ab494af7b3d3f93N

  • Size

    82KB

  • Sample

    240919-aqsfss1dja

  • MD5

    1e35b89c1781c4dba15e0ac5ae44fb00

  • SHA1

    6c4127c1f7bc9bae906931379892eba390dddce8

  • SHA256

    fdc01f2e1f5115469b0b1a88369fd4fc4c811e79e5626d599ab494af7b3d3f93

  • SHA512

    14162b7476764e8de807364312400c7dd8a92e539a5240ea208cf8f69367cd389a1111ad5894e4e5f861470063ebdd273ff8784f314eef168f4c3e7e6b52acdd

  • SSDEEP

    768:kBT37CPKKdJJTU3U2lRtJfOuBT37CPKKdJJTU3U2lRtJfOBpr:CTW7JJTU3UytJfO8TW7JJTU3UytJfO/

Malware Config

Targets

    • Target

      fdc01f2e1f5115469b0b1a88369fd4fc4c811e79e5626d599ab494af7b3d3f93N

    • Size

      82KB

    • MD5

      1e35b89c1781c4dba15e0ac5ae44fb00

    • SHA1

      6c4127c1f7bc9bae906931379892eba390dddce8

    • SHA256

      fdc01f2e1f5115469b0b1a88369fd4fc4c811e79e5626d599ab494af7b3d3f93

    • SHA512

      14162b7476764e8de807364312400c7dd8a92e539a5240ea208cf8f69367cd389a1111ad5894e4e5f861470063ebdd273ff8784f314eef168f4c3e7e6b52acdd

    • SSDEEP

      768:kBT37CPKKdJJTU3U2lRtJfOuBT37CPKKdJJTU3U2lRtJfOBpr:CTW7JJTU3UytJfO8TW7JJTU3UytJfO/

    • Renames multiple (4166) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks