Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016N
-
Size
84KB
-
Sample
241013-q5dh7avakl
-
MD5
3b04f509163e1166671db1ba1ee20b10
-
SHA1
f469a4074c237fbc3b1de50e5bc91da3545f3b46
-
SHA256
431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016
-
SHA512
30620c2c5bef2c2e1495a354ff925e9d00a661af6f32956495a64360e05123dce034fc0560db9bb1356b217b3087abcd414a34fcef4f381c822dedbe86c7750d
-
SSDEEP
1536:W7ZDpApmauaLXxpXxWRr47ZDpApmauaLXxpXxWRrQ:6DWprxNxXDWprxNx/
Static task
static1
Behavioral task
behavioral1
Sample
431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016N.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016N
-
Size
84KB
-
MD5
3b04f509163e1166671db1ba1ee20b10
-
SHA1
f469a4074c237fbc3b1de50e5bc91da3545f3b46
-
SHA256
431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016
-
SHA512
30620c2c5bef2c2e1495a354ff925e9d00a661af6f32956495a64360e05123dce034fc0560db9bb1356b217b3087abcd414a34fcef4f381c822dedbe86c7750d
-
SSDEEP
1536:W7ZDpApmauaLXxpXxWRr47ZDpApmauaLXxpXxWRrQ:6DWprxNxXDWprxNx/
Score9/10-
Renames multiple (4827) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-