Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942eN
-
Size
97KB
-
Sample
241020-z28plascrq
-
MD5
4bcdb2b164c9604b3ac572d964952430
-
SHA1
68529e4d4d78880307a1af672bb15afec4eb8780
-
SHA256
396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942e
-
SHA512
a520e959cc23905abed1c925fd133cd7e52781133866768d7e25d181e42eabf5d817d3949f67de859001f4c510ca102009b5a2bda876d7bd566ff435647b3abe
-
SSDEEP
768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKeKiwlZ:CTWciVRRNRRkFhFOTWciVRRNRRkFhF0
Behavioral task
behavioral1
Sample
396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942eN.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942eN.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942eN
-
Size
97KB
-
MD5
4bcdb2b164c9604b3ac572d964952430
-
SHA1
68529e4d4d78880307a1af672bb15afec4eb8780
-
SHA256
396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942e
-
SHA512
a520e959cc23905abed1c925fd133cd7e52781133866768d7e25d181e42eabf5d817d3949f67de859001f4c510ca102009b5a2bda876d7bd566ff435647b3abe
-
SSDEEP
768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKeKiwlZ:CTWciVRRNRRkFhFOTWciVRRNRRkFhF0
Score9/10-
Renames multiple (3708) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-