Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016N

  • Size

    84KB

  • Sample

    241013-q5dh7avakl

  • MD5

    3b04f509163e1166671db1ba1ee20b10

  • SHA1

    f469a4074c237fbc3b1de50e5bc91da3545f3b46

  • SHA256

    431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016

  • SHA512

    30620c2c5bef2c2e1495a354ff925e9d00a661af6f32956495a64360e05123dce034fc0560db9bb1356b217b3087abcd414a34fcef4f381c822dedbe86c7750d

  • SSDEEP

    1536:W7ZDpApmauaLXxpXxWRr47ZDpApmauaLXxpXxWRrQ:6DWprxNxXDWprxNx/

Score
9/10

Malware Config

Targets

    • Target

      431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016N

    • Size

      84KB

    • MD5

      3b04f509163e1166671db1ba1ee20b10

    • SHA1

      f469a4074c237fbc3b1de50e5bc91da3545f3b46

    • SHA256

      431bed2b71cfec3e0906ee6dc82d4be287b8a229b1842f0ab7756cbebdebc016

    • SHA512

      30620c2c5bef2c2e1495a354ff925e9d00a661af6f32956495a64360e05123dce034fc0560db9bb1356b217b3087abcd414a34fcef4f381c822dedbe86c7750d

    • SSDEEP

      1536:W7ZDpApmauaLXxpXxWRr47ZDpApmauaLXxpXxWRrQ:6DWprxNxXDWprxNx/

    Score
    9/10
    • Renames multiple (4827) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks