Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69

  • Size

    112KB

  • Sample

    240927-cm6kcszejp

  • MD5

    b226d4f80c39c6de30b8c6b6f5a77252

  • SHA1

    1a8c84f3a779316cbd88d08f2a1ed24e9e4375de

  • SHA256

    d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69

  • SHA512

    8ded04e99368e399a3964c859dcb546fdf3eda8dcb63da6ec4020d9a3e6dc8ab527bb2eec4e41c5891ba437ea568f525fed31c7a67177b6bca14bb9009be74d0

  • SSDEEP

    3072:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsJrWpcsHQ:tEO

Score
9/10

Malware Config

Targets

    • Target

      d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69

    • Size

      112KB

    • MD5

      b226d4f80c39c6de30b8c6b6f5a77252

    • SHA1

      1a8c84f3a779316cbd88d08f2a1ed24e9e4375de

    • SHA256

      d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69

    • SHA512

      8ded04e99368e399a3964c859dcb546fdf3eda8dcb63da6ec4020d9a3e6dc8ab527bb2eec4e41c5891ba437ea568f525fed31c7a67177b6bca14bb9009be74d0

    • SSDEEP

      3072:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsJrWpcsHQ:tEO

    Score
    9/10
    • Renames multiple (4712) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks