Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-01-28_bf69cb0732ddb6ed63eef872fb8afe70_ryuk

  • Size

    2.0MB

  • Sample

    240128-wax71aehc5

  • MD5

    bf69cb0732ddb6ed63eef872fb8afe70

  • SHA1

    13ea0262c03ec4964c28987eadc6446d193e49f3

  • SHA256

    2fff4f8519b4269e84a94d0699ebc3fb42d9f34de5f8e192f02ff14857b2ed89

  • SHA512

    cd568be79f64176bbb0c7bdcc35f247a0dac37aca01c723660943846a6dad9a0e8fbc2b9de34ba71cd2a6f5e5193c3c4f5e5cbb760b7dfd293251f53f8aeed5c

  • SSDEEP

    49152:IYwgtggJTiQuirmRbTOdIyLNiXicJFFRGNzj3:wgamiQ9mROSy7wRGpj3

Score
7/10

Malware Config

Targets

    • Target

      2024-01-28_bf69cb0732ddb6ed63eef872fb8afe70_ryuk

    • Size

      2.0MB

    • MD5

      bf69cb0732ddb6ed63eef872fb8afe70

    • SHA1

      13ea0262c03ec4964c28987eadc6446d193e49f3

    • SHA256

      2fff4f8519b4269e84a94d0699ebc3fb42d9f34de5f8e192f02ff14857b2ed89

    • SHA512

      cd568be79f64176bbb0c7bdcc35f247a0dac37aca01c723660943846a6dad9a0e8fbc2b9de34ba71cd2a6f5e5193c3c4f5e5cbb760b7dfd293251f53f8aeed5c

    • SSDEEP

      49152:IYwgtggJTiQuirmRbTOdIyLNiXicJFFRGNzj3:wgamiQ9mROSy7wRGpj3

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks