Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-02-01_9cb761fcd27428b6e601887ea42ee621_ryuk

  • Size

    4.1MB

  • Sample

    240201-m88xqadfeq

  • MD5

    9cb761fcd27428b6e601887ea42ee621

  • SHA1

    2aed57e91386239202cb93169103b9ca3e2765ea

  • SHA256

    1b7bc3e60ca79e7d5ba340ce0c2c1c7aeb3b4f5ef1fb2be6252a95ec41cbc37a

  • SHA512

    6278a614bb4e932a7a94f547f42c7a6915d41fb473dc9dcea2cc3d35692f032961530ff064a04b85de87d761e775b5e84fd3a3b47db21d3154e27863e35d098a

  • SSDEEP

    49152:S5Viqwo4KxghcyJLBaSbvviqMjfBVdTFZ1bBzP7n1Y8/17MVfw1QSXm+RFvTCr9k:SBfrdTFFqRlw6a+zC17DVqFJU

Score
7/10

Malware Config

Targets

    • Target

      2024-02-01_9cb761fcd27428b6e601887ea42ee621_ryuk

    • Size

      4.1MB

    • MD5

      9cb761fcd27428b6e601887ea42ee621

    • SHA1

      2aed57e91386239202cb93169103b9ca3e2765ea

    • SHA256

      1b7bc3e60ca79e7d5ba340ce0c2c1c7aeb3b4f5ef1fb2be6252a95ec41cbc37a

    • SHA512

      6278a614bb4e932a7a94f547f42c7a6915d41fb473dc9dcea2cc3d35692f032961530ff064a04b85de87d761e775b5e84fd3a3b47db21d3154e27863e35d098a

    • SSDEEP

      49152:S5Viqwo4KxghcyJLBaSbvviqMjfBVdTFZ1bBzP7n1Y8/17MVfw1QSXm+RFvTCr9k:SBfrdTFFqRlw6a+zC17DVqFJU

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks