Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3b672e22ae482beb9b219f992a8f78202c1b3f8c688a04783e2a2555e330bbc8N

  • Size

    2.4MB

  • Sample

    241009-m9ep9stakj

  • MD5

    396cf3b47c6bab1f66b34794ac38e130

  • SHA1

    350c33f41d187056ecaca8a81f21f7b14b9139ff

  • SHA256

    3b672e22ae482beb9b219f992a8f78202c1b3f8c688a04783e2a2555e330bbc8

  • SHA512

    4ff32765f9a658899e53281ba55cc3be0a6075b886bc862a4b8eb70bee4a58cd341a18056bea90a6d9fb72a34abbd0392a9a0924dbd80c9413bdc215a02ccecc

  • SSDEEP

    49152:KGlWC3YlQt8CWVQ7VFGogWAcF8jH7VaOtXcZ:8Q3YI+W

Score
9/10

Malware Config

Targets

    • Target

      3b672e22ae482beb9b219f992a8f78202c1b3f8c688a04783e2a2555e330bbc8N

    • Size

      2.4MB

    • MD5

      396cf3b47c6bab1f66b34794ac38e130

    • SHA1

      350c33f41d187056ecaca8a81f21f7b14b9139ff

    • SHA256

      3b672e22ae482beb9b219f992a8f78202c1b3f8c688a04783e2a2555e330bbc8

    • SHA512

      4ff32765f9a658899e53281ba55cc3be0a6075b886bc862a4b8eb70bee4a58cd341a18056bea90a6d9fb72a34abbd0392a9a0924dbd80c9413bdc215a02ccecc

    • SSDEEP

      49152:KGlWC3YlQt8CWVQ7VFGogWAcF8jH7VaOtXcZ:8Q3YI+W

    Score
    9/10
    • Renames multiple (3776) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks