Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69
-
Size
112KB
-
Sample
240927-cm6kcszejp
-
MD5
b226d4f80c39c6de30b8c6b6f5a77252
-
SHA1
1a8c84f3a779316cbd88d08f2a1ed24e9e4375de
-
SHA256
d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69
-
SHA512
8ded04e99368e399a3964c859dcb546fdf3eda8dcb63da6ec4020d9a3e6dc8ab527bb2eec4e41c5891ba437ea568f525fed31c7a67177b6bca14bb9009be74d0
-
SSDEEP
3072:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsJrWpcsHQ:tEO
Static task
static1
Behavioral task
behavioral1
Sample
d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69
-
Size
112KB
-
MD5
b226d4f80c39c6de30b8c6b6f5a77252
-
SHA1
1a8c84f3a779316cbd88d08f2a1ed24e9e4375de
-
SHA256
d7fd3e14f28bd61cc76651011543315f608dff69cd5f0593b56dc43ad309bf69
-
SHA512
8ded04e99368e399a3964c859dcb546fdf3eda8dcb63da6ec4020d9a3e6dc8ab527bb2eec4e41c5891ba437ea568f525fed31c7a67177b6bca14bb9009be74d0
-
SSDEEP
3072:6rWpcsHEhLfyBtPf50FWkFpPDze/qFsxEhLfyBtPf50FWkFpPDze/qFsJrWpcsHQ:tEO
Score9/10-
Renames multiple (4712) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-