Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

4105add5de...8N.exe

windows7-x64

9

4105add5de...8N.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4105add5dedcb30a8f6be088ba699024e2996413c52342630ecd0f67f97183e8N

  • Size

    74KB

  • Sample

    240919-hmqf2awdpp

  • MD5

    260534b0dcaedb74b451144276654d40

  • SHA1

    e44ec91cfb8f53d2433a99e96fffbdec286d5b43

  • SHA256

    4105add5dedcb30a8f6be088ba699024e2996413c52342630ecd0f67f97183e8

  • SHA512

    41d3a2169c105a9336dc33afb22b19ebd39d45aa99dd1fe1a9190dc23b924ae7d637626bbcd909905b97573533d0aed2015abef5bf7f811ba7c9a9fdd26ab4ec

  • SSDEEP

    1536:W7ZhA7pApM21LOA1LOl6w7ZhA7pApM21LOA1LOl6Y:6e7WpMgLOiLOTe7WpMgLOiLO/

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      4105add5dedcb30a8f6be088ba699024e2996413c52342630ecd0f67f97183e8N

    • Size

      74KB

    • MD5

      260534b0dcaedb74b451144276654d40

    • SHA1

      e44ec91cfb8f53d2433a99e96fffbdec286d5b43

    • SHA256

      4105add5dedcb30a8f6be088ba699024e2996413c52342630ecd0f67f97183e8

    • SHA512

      41d3a2169c105a9336dc33afb22b19ebd39d45aa99dd1fe1a9190dc23b924ae7d637626bbcd909905b97573533d0aed2015abef5bf7f811ba7c9a9fdd26ab4ec

    • SSDEEP

      1536:W7ZhA7pApM21LOA1LOl6w7ZhA7pApM21LOA1LOl6Y:6e7WpMgLOiLOTe7WpMgLOiLO/

    Score
    9/10
    discoveryransomware

    • Renames multiple (4016) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks