Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2025-01-26_0c6f18c1cb336e0e59adc8d88e2c616d_wannacry

  • Size

    3.6MB

  • Sample

    250126-h8dpcsxjhq

  • MD5

    0c6f18c1cb336e0e59adc8d88e2c616d

  • SHA1

    9b34a972c2ffa7da640296954a8ba85edd491add

  • SHA256

    487f9118d89a988513c8217807e5b90a5e9ffd5d88a90eab567ec31e488808c2

  • SHA512

    77747a7b9e8148a95fda4676d1f6bca537d9b0e7a4e515c9a3a436936ed1d09701d7ae36fd83ae90bee0eccc1982a48bede6136bd0692721c7feb2a8693b471e

  • SSDEEP

    12288:GwbLgPluxQhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+DHeQYSU:VbLgdeQhfdmMSirYbcMNgef0QeQ

Malware Config

Targets

    • Target

      2025-01-26_0c6f18c1cb336e0e59adc8d88e2c616d_wannacry

    • Size

      3.6MB

    • MD5

      0c6f18c1cb336e0e59adc8d88e2c616d

    • SHA1

      9b34a972c2ffa7da640296954a8ba85edd491add

    • SHA256

      487f9118d89a988513c8217807e5b90a5e9ffd5d88a90eab567ec31e488808c2

    • SHA512

      77747a7b9e8148a95fda4676d1f6bca537d9b0e7a4e515c9a3a436936ed1d09701d7ae36fd83ae90bee0eccc1982a48bede6136bd0692721c7feb2a8693b471e

    • SSDEEP

      12288:GwbLgPluxQhMbaIMu7L5NVErCA4z2g6rTcbckPU82900Ve7zw+K+DHeQYSU:VbLgdeQhfdmMSirYbcMNgef0QeQ

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Wannacry family

    • Contacts a large (3297) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks