Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b769301c55d7cd21ac3fa85222b87625f2927b0e0ac39b2eee774184528c83a1N

  • Size

    75KB

  • Sample

    241020-xmfzxswfpm

  • MD5

    5a9c5c0194ff02ce9d433dc07077a6f0

  • SHA1

    5360c1e7f6d4d6275502b3bb6758447e8897ebcb

  • SHA256

    b769301c55d7cd21ac3fa85222b87625f2927b0e0ac39b2eee774184528c83a1

  • SHA512

    f16204eb720c3192416dc86dbfd45ac54cb2ba01e9c0bfa7d3acf60a3e3419d4589d4bcd92c3f09f95e87bf184b1037c2e00a9b4089cf3c2a56cd651bfb7ead7

  • SSDEEP

    1536:CTW7JJ7TPUnW42Ar0ARZF6NFVogjQlRv/La:hzUD2RwUhQ7Xe

Malware Config

Targets

    • Target

      b769301c55d7cd21ac3fa85222b87625f2927b0e0ac39b2eee774184528c83a1N

    • Size

      75KB

    • MD5

      5a9c5c0194ff02ce9d433dc07077a6f0

    • SHA1

      5360c1e7f6d4d6275502b3bb6758447e8897ebcb

    • SHA256

      b769301c55d7cd21ac3fa85222b87625f2927b0e0ac39b2eee774184528c83a1

    • SHA512

      f16204eb720c3192416dc86dbfd45ac54cb2ba01e9c0bfa7d3acf60a3e3419d4589d4bcd92c3f09f95e87bf184b1037c2e00a9b4089cf3c2a56cd651bfb7ead7

    • SSDEEP

      1536:CTW7JJ7TPUnW42Ar0ARZF6NFVogjQlRv/La:hzUD2RwUhQ7Xe

    • Renames multiple (3273) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks