Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc632b99409dd382636cf4cdc458dc6896f25f30000e295001d9d8c373123c15

  • Size

    105KB

  • Sample

    241016-gxddsawflb

  • MD5

    79220c125713c4ed46d8824bbfa7373e

  • SHA1

    2b6c2938ae88e6dc55d050ea17ead7b0cddf0e02

  • SHA256

    dc632b99409dd382636cf4cdc458dc6896f25f30000e295001d9d8c373123c15

  • SHA512

    94e7bb70efff57ff73f01337ad02cebe6c0c4091c2bfdbaad7dec588e727baa6d3a39ef46b6dd7fae1ddcf3f486510264a5cca5a5c6676d2226042f28f18a58e

  • SSDEEP

    3072:fnyiQSodYeHNmkDxfIyKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kCot:KiQSodYeHNmC

Malware Config

Targets

    • Target

      dc632b99409dd382636cf4cdc458dc6896f25f30000e295001d9d8c373123c15

    • Size

      105KB

    • MD5

      79220c125713c4ed46d8824bbfa7373e

    • SHA1

      2b6c2938ae88e6dc55d050ea17ead7b0cddf0e02

    • SHA256

      dc632b99409dd382636cf4cdc458dc6896f25f30000e295001d9d8c373123c15

    • SHA512

      94e7bb70efff57ff73f01337ad02cebe6c0c4091c2bfdbaad7dec588e727baa6d3a39ef46b6dd7fae1ddcf3f486510264a5cca5a5c6676d2226042f28f18a58e

    • SSDEEP

      3072:fnyiQSodYeHNmkDxfIyKoIWbsHfySkT5GeCyi348oWGRPOzkjId6q8UdrSD+kCot:KiQSodYeHNmC

    • Renames multiple (3457) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks