Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0038797c6cea63c9c9b51e1ceb66a849f25c0d1657d360c3274345b20d362b04N.exe
-
Size
112KB
-
Sample
240925-t5l24swalj
-
MD5
931cd7b2f3d575741f4ca0bbd34a2310
-
SHA1
e24e15d202ab1d051dda2876a3b62cb46c735b6f
-
SHA256
0038797c6cea63c9c9b51e1ceb66a849f25c0d1657d360c3274345b20d362b04
-
SHA512
836eb89e5708415543ca3f9faaeaab8237550ddb3e68490ec54a9dd94671cbb5423e64e608a2440a50397a6e3357af82fb8ff45176033c7f54287f7181ee8c72
-
SSDEEP
3072:6e7WpwYRYxSKSWu0SWube7WpwYRYxSKSWu0SWu+:Rq7axSKSWu0SWuaq7axSKSWu0SWu+
Static task
static1
Behavioral task
behavioral1
Sample
0038797c6cea63c9c9b51e1ceb66a849f25c0d1657d360c3274345b20d362b04N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
0038797c6cea63c9c9b51e1ceb66a849f25c0d1657d360c3274345b20d362b04N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
0038797c6cea63c9c9b51e1ceb66a849f25c0d1657d360c3274345b20d362b04N.exe
-
Size
112KB
-
MD5
931cd7b2f3d575741f4ca0bbd34a2310
-
SHA1
e24e15d202ab1d051dda2876a3b62cb46c735b6f
-
SHA256
0038797c6cea63c9c9b51e1ceb66a849f25c0d1657d360c3274345b20d362b04
-
SHA512
836eb89e5708415543ca3f9faaeaab8237550ddb3e68490ec54a9dd94671cbb5423e64e608a2440a50397a6e3357af82fb8ff45176033c7f54287f7181ee8c72
-
SSDEEP
3072:6e7WpwYRYxSKSWu0SWube7WpwYRYxSKSWu0SWu+:Rq7axSKSWu0SWuaq7axSKSWu0SWu+
Score9/10-
Renames multiple (4344) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-