trigona | d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a | Triage

Submit
Reports

Overview

overview

Static

static

d743daa22f...8a.exe

windows7-x64

d743daa22f...8a.exe

windows10-2004-x64

Sharing

General

Target

d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a.exe
Size

1.1MB
Sample

250212-gx1t3s1jgt
MD5

1852be15aa8dcf664291b3849bd348e4
SHA1

eea811d2a304101cc0b0edebe6590ea0f3da0a27
SHA256

d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a
SHA512

91ca1d44fa98a43dbc53541cecb8ca656df01d6dc57783f12c70df49347520e150796834731b56107976b5b9dc915006d18caf39ac6792187d605542452bd4eb
SSDEEP

24576:hY6frxBDmkY+Jr0Iql2v4sx+uxtTyJuqe:bKuTvBwSdCud

Score

10^/10

trigona discovery persistence ransomware

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a.exe

Resource

win7-20240903-en

trigona discovery persistence ransomware

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a.exe

Resource

win10v2004-20250211-en

trigona discovery persistence ransomware

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a.exe
- Size
  
  1.1MB
- MD5
  
  1852be15aa8dcf664291b3849bd348e4
- SHA1
  
  eea811d2a304101cc0b0edebe6590ea0f3da0a27
- SHA256
  
  d743daa22fdf4313a10da027b034c603eda255be037cb45b28faea23114d3b8a
- SHA512
  
  91ca1d44fa98a43dbc53541cecb8ca656df01d6dc57783f12c70df49347520e150796834731b56107976b5b9dc915006d18caf39ac6792187d605542452bd4eb
- SSDEEP
  
  24576:hY6frxBDmkY+Jr0Iql2v4sx+uxtTyJuqe:bKuTvBwSdCud
Score

10^/10

trigona discovery persistence ransomware
- Detects Trigona ransomware
- Trigona
  A ransomware first seen at the beginning of the 2022.
  ransomware trigona
- Trigona family
  trigona
- Downloads MZ/PE file
- Adds Run key to start application
  persistence
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

trigonadiscoverypersistenceransomware

behavioral2

trigonadiscoverypersistenceransomware

© 2018-2025

Terms | Privacy