Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6828b30a0f112216fda089258164ab5742a1e33c3a2caf23d3584d308b68a647

  • Size

    85KB

  • Sample

    240928-2l9ytszajl

  • MD5

    83a624b7cfccd8e5f1cbc37da3888b63

  • SHA1

    ba92f40ff8177d7d07a781f71e504e5ef23f398a

  • SHA256

    6828b30a0f112216fda089258164ab5742a1e33c3a2caf23d3584d308b68a647

  • SHA512

    7ce3d7ce5b58e875e261ef33e8599c3d0e2ac9acc1f7288de93ca0d33d2f5c5d84bc0fb0bf51c52b5a43d14b6b0d531f21dbec67e13be99ffbc36a67ce122e17

  • SSDEEP

    1536:W7ZppApBULcfpHLcfpyDZPQqY7ZppApBULcfpHLcfpyDZPQq4:6pWpBwchcwDqqYpWpBwchcwDqq4

Score
9/10

Malware Config

Targets

    • Target

      6828b30a0f112216fda089258164ab5742a1e33c3a2caf23d3584d308b68a647

    • Size

      85KB

    • MD5

      83a624b7cfccd8e5f1cbc37da3888b63

    • SHA1

      ba92f40ff8177d7d07a781f71e504e5ef23f398a

    • SHA256

      6828b30a0f112216fda089258164ab5742a1e33c3a2caf23d3584d308b68a647

    • SHA512

      7ce3d7ce5b58e875e261ef33e8599c3d0e2ac9acc1f7288de93ca0d33d2f5c5d84bc0fb0bf51c52b5a43d14b6b0d531f21dbec67e13be99ffbc36a67ce122e17

    • SSDEEP

      1536:W7ZppApBULcfpHLcfpyDZPQqY7ZppApBULcfpHLcfpyDZPQq4:6pWpBwchcwDqqYpWpBwchcwDqq4

    Score
    9/10
    • Renames multiple (4963) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks