Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-26_f0311421af6b8d38da26e4409629e5ff_ryuk

  • Size

    2.2MB

  • Sample

    240126-lltnvaagh7

  • MD5

    f0311421af6b8d38da26e4409629e5ff

  • SHA1

    d96c8f09de584b9a063461eb2593e18e15b467b4

  • SHA256

    06ac37e2eabb45bcc0ed951ab1f3b6609b80178960b90ef6511b9c103c9b52fd

  • SHA512

    d8cf13f7125b81c84d59c959cae64a13e27c551fcf2d4aedc6a4c3dc245c920bc82d1d8f9e8957a1326ae57d20b4c03d931e9d72ddbb83787c048a868b36a123

  • SSDEEP

    49152:G/opsDuePJfrFHIzsFKV8LN0REDmg27RnWGj:Guaue5rFYSDD527BWG

Score
7/10

Malware Config

Targets

    • Target

      2024-01-26_f0311421af6b8d38da26e4409629e5ff_ryuk

    • Size

      2.2MB

    • MD5

      f0311421af6b8d38da26e4409629e5ff

    • SHA1

      d96c8f09de584b9a063461eb2593e18e15b467b4

    • SHA256

      06ac37e2eabb45bcc0ed951ab1f3b6609b80178960b90ef6511b9c103c9b52fd

    • SHA512

      d8cf13f7125b81c84d59c959cae64a13e27c551fcf2d4aedc6a4c3dc245c920bc82d1d8f9e8957a1326ae57d20b4c03d931e9d72ddbb83787c048a868b36a123

    • SSDEEP

      49152:G/opsDuePJfrFHIzsFKV8LN0REDmg27RnWGj:Guaue5rFYSDD527BWG

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks