Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b2d6dd95e0a2bc30892b8c4df883716aefbb793d28b7f130a6671c7b5b260f18N.exe

  • Size

    189KB

  • Sample

    250111-z9wd8szpev

  • MD5

    9974dc1446fa5741ae9cfabac86fc0d0

  • SHA1

    e09ec2a456a958c010d156afa0fe56899cc7c118

  • SHA256

    b2d6dd95e0a2bc30892b8c4df883716aefbb793d28b7f130a6671c7b5b260f18

  • SHA512

    27927d6727491b5414dd13293b3097ddfe524be51a34bc7d9a3155f19bd4712b03195f2bb62fdb5774cf6cafff4017cccdcdfe0e450db29c0ad2fe02ee53c9fd

  • SSDEEP

    3072:htEyyj2yAeCgjJQWHIjN3tj6qnv0b2UrXkbvLiP+:fEyyj2yAIJbIjNDv0bNXkbvLiP+

Malware Config

Targets

    • Target

      b2d6dd95e0a2bc30892b8c4df883716aefbb793d28b7f130a6671c7b5b260f18N.exe

    • Size

      189KB

    • MD5

      9974dc1446fa5741ae9cfabac86fc0d0

    • SHA1

      e09ec2a456a958c010d156afa0fe56899cc7c118

    • SHA256

      b2d6dd95e0a2bc30892b8c4df883716aefbb793d28b7f130a6671c7b5b260f18

    • SHA512

      27927d6727491b5414dd13293b3097ddfe524be51a34bc7d9a3155f19bd4712b03195f2bb62fdb5774cf6cafff4017cccdcdfe0e450db29c0ad2fe02ee53c9fd

    • SSDEEP

      3072:htEyyj2yAeCgjJQWHIjN3tj6qnv0b2UrXkbvLiP+:fEyyj2yAIJbIjNDv0bNXkbvLiP+

    • Renames multiple (2173) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks