Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

b595b7e036...3N.exe

windows7-x64

9

b595b7e036...3N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b595b7e03690b7037d253bb8dee714a5981a851229ee9dd2aa40a932c1cef3f3N

  • Size

    89KB

  • Sample

    240919-gzgh8avbjf

  • MD5

    7004ff214ceea8fe187aea1a1fa1de20

  • SHA1

    4394f51d7e387adf091266be8a479f5db406f071

  • SHA256

    b595b7e03690b7037d253bb8dee714a5981a851229ee9dd2aa40a932c1cef3f3

  • SHA512

    91e231041f8b22082d1fc8f645da53d95f1ee526e665f8ec6e30225b67be40c2d98c13402f5fa1bf3fbb11bdcd39ef886f63b88b5e6315370533c1884ea5302f

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpyDaJ5UJ547ZppApBULcfpHLcfpyDaJ5UJ59WY:6pWpBwchcwDqpWpBwchcwD1

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      b595b7e03690b7037d253bb8dee714a5981a851229ee9dd2aa40a932c1cef3f3N

    • Size

      89KB

    • MD5

      7004ff214ceea8fe187aea1a1fa1de20

    • SHA1

      4394f51d7e387adf091266be8a479f5db406f071

    • SHA256

      b595b7e03690b7037d253bb8dee714a5981a851229ee9dd2aa40a932c1cef3f3

    • SHA512

      91e231041f8b22082d1fc8f645da53d95f1ee526e665f8ec6e30225b67be40c2d98c13402f5fa1bf3fbb11bdcd39ef886f63b88b5e6315370533c1884ea5302f

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpyDaJ5UJ547ZppApBULcfpHLcfpyDaJ5UJ59WY:6pWpBwchcwDqpWpBwchcwD1

    Score
    9/10
    discoveryransomware

    • Renames multiple (4878) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks