Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    de577034fb7d26973c8a2b3e08c68dc06e5dc2ca5545466bb5139b90aba61c84

  • Size

    38KB

  • Sample

    241016-gznyas1ckr

  • MD5

    4b727466bde6e5b8688a375a7f2edc57

  • SHA1

    8abc75ba24fdfbf652575ad2b55ba99a47a2cdf6

  • SHA256

    de577034fb7d26973c8a2b3e08c68dc06e5dc2ca5545466bb5139b90aba61c84

  • SHA512

    b5aacdc37fb5a9e09f58b001a902d4d164f5ffde49ca9c73b94dfc915fa9e6625ebce3f09b251de5f5b9ce3667b6bd805e8de4dc19036758e013f2cc2a1138bf

  • SSDEEP

    768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATBHfBo8o3PC:CTW7JJZENTBHfiPC

Malware Config

Targets

    • Target

      de577034fb7d26973c8a2b3e08c68dc06e5dc2ca5545466bb5139b90aba61c84

    • Size

      38KB

    • MD5

      4b727466bde6e5b8688a375a7f2edc57

    • SHA1

      8abc75ba24fdfbf652575ad2b55ba99a47a2cdf6

    • SHA256

      de577034fb7d26973c8a2b3e08c68dc06e5dc2ca5545466bb5139b90aba61c84

    • SHA512

      b5aacdc37fb5a9e09f58b001a902d4d164f5ffde49ca9c73b94dfc915fa9e6625ebce3f09b251de5f5b9ce3667b6bd805e8de4dc19036758e013f2cc2a1138bf

    • SSDEEP

      768:kBT37CPKKdJJcbQbf1Oti1JGBQOOiQJhATBHfBo8o3PC:CTW7JJZENTBHfiPC

    • Renames multiple (1156) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks