Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

43cebf1aca...0c.exe

windows7-x64

9

43cebf1aca...0c.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    43cebf1aca5b1b5832c07a7213c75c2275a1dd270e6927fbe991f1875a18bd0c

  • Size

    112KB

  • Sample

    240928-zxm74ayhlc

  • MD5

    5874177096f4e3e881624d6e56ab383a

  • SHA1

    1ec80937a49ec8007d5d8e3776321a410841be0e

  • SHA256

    43cebf1aca5b1b5832c07a7213c75c2275a1dd270e6927fbe991f1875a18bd0c

  • SHA512

    63f55532a376d1026d10dd636ac3327e62bb53d352ad4fdec3106337f4194ceb5e766872adf73ea6c5cf248e7900b6414495ff970c2097a82025ba07f0f82742

  • SSDEEP

    768:/7BlpQpARFbhvEXBwzEXBwLtAc7Fc7/7BlpQpARFbhvEXBwzEXBwLtAc7Fc79:/7ZQpApHo/7ZQpApHo9

Score
9/10
discoveryransomware

Malware Config

Targets

    • Target

      43cebf1aca5b1b5832c07a7213c75c2275a1dd270e6927fbe991f1875a18bd0c

    • Size

      112KB

    • MD5

      5874177096f4e3e881624d6e56ab383a

    • SHA1

      1ec80937a49ec8007d5d8e3776321a410841be0e

    • SHA256

      43cebf1aca5b1b5832c07a7213c75c2275a1dd270e6927fbe991f1875a18bd0c

    • SHA512

      63f55532a376d1026d10dd636ac3327e62bb53d352ad4fdec3106337f4194ceb5e766872adf73ea6c5cf248e7900b6414495ff970c2097a82025ba07f0f82742

    • SSDEEP

      768:/7BlpQpARFbhvEXBwzEXBwLtAc7Fc7/7BlpQpARFbhvEXBwzEXBwLtAc7Fc79:/7ZQpApHo/7ZQpApHo9

    Score
    9/10
    discoveryransomware

    • Renames multiple (1226) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks