Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Rebel.7z

windows7-x64

1

Rebel.7z

windows10-2004-x64

10

Rebel/Bin/...or.exe

windows7-x64

5

Rebel/Bin/...or.exe

windows10-2004-x64

5

Rebel/Bin/Rebel.dll

windows7-x64

1

Rebel/Bin/Rebel.dll

windows10-2004-x64

1

Rebel/Fast...ox.dll

windows7-x64

1

Rebel/Fast...ox.dll

windows10-2004-x64

1

Rebel/Fast...ox.xml

windows7-x64

3

Rebel/Fast...ox.xml

windows10-2004-x64

1

Rebel/ReadMe.txt

windows7-x64

1

Rebel/ReadMe.txt

windows10-2004-x64

1

Rebel/Rebe...ed.exe

windows7-x64

10

Rebel/Rebe...ed.exe

windows10-2004-x64

10

Rebel/Syst...om.dll

windows7-x64

1

Rebel/Syst...om.dll

windows10-2004-x64

1

Rebel/Syst...om.xml

windows7-x64

3

Rebel/Syst...om.xml

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    15/10/2024, 12:05 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Rebel/ReadMe.txt

  • Size

    13B

  • MD5

    1c6c20f0c324e98e38272f1245d24e11

  • SHA1

    bbb5dc3a18a532529ec6fa88c86542288dd979f7

  • SHA256

    4ca7414e2aba6d74826403afb6ccbcc1752297a1b61aced8808b75d80d212f2d

  • SHA512

    a30aed5a54580ad73f16ad237f82e2dc99c99d9645d40d1fbdf88a7d6c10c238b6967c011ba46c6084d409e4a37b41983d600146f93cd9250a810b7d784d8246

Score
1/10

Malware Config

Signatures

  • Opens file in notepad (likely ransom note) 1 IoCs
    ransomware

Processes

  • C:\Windows\system32\NOTEPAD.EXE
    C:\Windows\system32\NOTEPAD.EXE C:\Users\Admin\AppData\Local\Temp\Rebel\ReadMe.txt
    1⤵
    • Opens file in notepad (likely ransom note)
    PID:2964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.