Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    faf42f221708df725307bbe460d6779bd53d2e0bf71f3e5e021a175b1ac1b1f1N

  • Size

    6.5MB

  • Sample

    241016-b2dmfszhml

  • MD5

    ca1b372497c02aaca9c7d13a7efe99b0

  • SHA1

    b753680a0204c8c42dd283a8b81a177907af38da

  • SHA256

    faf42f221708df725307bbe460d6779bd53d2e0bf71f3e5e021a175b1ac1b1f1

  • SHA512

    662969e321b3cd1ff91d3d6c84f5a0b17c84ac4e3eb0fda910ffc323d94c34fd1eb17af78ab6f1ab204a77bf6ac02e22e04e225c46765ed440d2d2724f675ae5

  • SSDEEP

    196608:FCzNA7rlvRz1rrFBV6tpjuj6gYPKHCKsk:FjUtYj6gYPY9

Score
9/10

Malware Config

Targets

    • Target

      faf42f221708df725307bbe460d6779bd53d2e0bf71f3e5e021a175b1ac1b1f1N

    • Size

      6.5MB

    • MD5

      ca1b372497c02aaca9c7d13a7efe99b0

    • SHA1

      b753680a0204c8c42dd283a8b81a177907af38da

    • SHA256

      faf42f221708df725307bbe460d6779bd53d2e0bf71f3e5e021a175b1ac1b1f1

    • SHA512

      662969e321b3cd1ff91d3d6c84f5a0b17c84ac4e3eb0fda910ffc323d94c34fd1eb17af78ab6f1ab204a77bf6ac02e22e04e225c46765ed440d2d2724f675ae5

    • SSDEEP

      196608:FCzNA7rlvRz1rrFBV6tpjuj6gYPKHCKsk:FjUtYj6gYPY9

    Score
    9/10
    • Renames multiple (2917) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks