Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942eN

  • Size

    97KB

  • Sample

    241020-z5778s1bjb

  • MD5

    4bcdb2b164c9604b3ac572d964952430

  • SHA1

    68529e4d4d78880307a1af672bb15afec4eb8780

  • SHA256

    396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942e

  • SHA512

    a520e959cc23905abed1c925fd133cd7e52781133866768d7e25d181e42eabf5d817d3949f67de859001f4c510ca102009b5a2bda876d7bd566ff435647b3abe

  • SSDEEP

    768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKeKiwlZ:CTWciVRRNRRkFhFOTWciVRRNRRkFhF0

Malware Config

Targets

    • Target

      396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942eN

    • Size

      97KB

    • MD5

      4bcdb2b164c9604b3ac572d964952430

    • SHA1

      68529e4d4d78880307a1af672bb15afec4eb8780

    • SHA256

      396685040512c3e240c9b0464f326aa382278df3060a2c267c4bcd0bda3d942e

    • SHA512

      a520e959cc23905abed1c925fd133cd7e52781133866768d7e25d181e42eabf5d817d3949f67de859001f4c510ca102009b5a2bda876d7bd566ff435647b3abe

    • SSDEEP

      768:kBT37CPKK1EXBwzEXBw3sgQw58eGkz2rcuesgQw58eGkz2rcu90TKe+0TKeKiwlZ:CTWciVRRNRRkFhFOTWciVRRNRRkFhF0

    • Renames multiple (4914) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks