Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c78e6e8fb651e31c9abfc5a5a6cb2c69287bdcd3b6515c7bb63ebb1ecf519a8a

  • Size

    125KB

  • Sample

    241016-fsyngstfrg

  • MD5

    538e112eea0f0670d0331b9fd3f96af3

  • SHA1

    1e9279a33d9e3a75774d0f844823cc870d9af962

  • SHA256

    c78e6e8fb651e31c9abfc5a5a6cb2c69287bdcd3b6515c7bb63ebb1ecf519a8a

  • SHA512

    0f594c6614e9b92d9bfe99230c4b3e38a141bdb6de86416dff57146b5af49d4d1ae3b54d88454a70c20d6d7ba579758f8fc1ff6c6a6cdcc6934fa34dde99c19a

  • SSDEEP

    768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBHfBo8o3PVMN1M:V7Zf/FAxTWoJJZENTBHfiPCNc8uO6zl

Malware Config

Targets

    • Target

      c78e6e8fb651e31c9abfc5a5a6cb2c69287bdcd3b6515c7bb63ebb1ecf519a8a

    • Size

      125KB

    • MD5

      538e112eea0f0670d0331b9fd3f96af3

    • SHA1

      1e9279a33d9e3a75774d0f844823cc870d9af962

    • SHA256

      c78e6e8fb651e31c9abfc5a5a6cb2c69287bdcd3b6515c7bb63ebb1ecf519a8a

    • SHA512

      0f594c6614e9b92d9bfe99230c4b3e38a141bdb6de86416dff57146b5af49d4d1ae3b54d88454a70c20d6d7ba579758f8fc1ff6c6a6cdcc6934fa34dde99c19a

    • SSDEEP

      768:V7Blpf/FAK65euBT37CPKKQSjyJJcbQbf1Oti1JGBQOOiQJhATBHfBo8o3PVMN1M:V7Zf/FAxTWoJJZENTBHfiPCNc8uO6zl

    • Renames multiple (3460) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks