Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
bf4ffc92efd824d235fbba4051db8efdf85c267d5f61fd864489b7e4bb4d8487N
-
Size
135KB
-
Sample
241016-f6g8naygmn
-
MD5
84d9f3b091d23bfb1e43bd3d8f04e320
-
SHA1
9a4715a7a9e4e2a82a7fa5a5e966de197fed4fae
-
SHA256
bf4ffc92efd824d235fbba4051db8efdf85c267d5f61fd864489b7e4bb4d8487
-
SHA512
0f5520d1e5f13fe64e965ac988cdb8df4524fa3bb0cb90c6f85182be39fcee6083453d400028352c8e069828b85df68805c18330e828e3c6d13cd482686d88de
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY5pTWn1++PJHJXA/OsIZfzc3/Q8zxY5J:KQSox5NQSox5J
Behavioral task
behavioral1
Sample
bf4ffc92efd824d235fbba4051db8efdf85c267d5f61fd864489b7e4bb4d8487N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
bf4ffc92efd824d235fbba4051db8efdf85c267d5f61fd864489b7e4bb4d8487N.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
bf4ffc92efd824d235fbba4051db8efdf85c267d5f61fd864489b7e4bb4d8487N
-
Size
135KB
-
MD5
84d9f3b091d23bfb1e43bd3d8f04e320
-
SHA1
9a4715a7a9e4e2a82a7fa5a5e966de197fed4fae
-
SHA256
bf4ffc92efd824d235fbba4051db8efdf85c267d5f61fd864489b7e4bb4d8487
-
SHA512
0f5520d1e5f13fe64e965ac988cdb8df4524fa3bb0cb90c6f85182be39fcee6083453d400028352c8e069828b85df68805c18330e828e3c6d13cd482686d88de
-
SSDEEP
1536:CTWn1++PJHJXA/OsIZfzc3/Q8zxY5pTWn1++PJHJXA/OsIZfzc3/Q8zxY5J:KQSox5NQSox5J
Score9/10-
Renames multiple (4231) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-