Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
RyuSAK-1.6.2.Setup.exe
-
Size
85.7MB
-
Sample
240308-e7wxrsfc72
-
MD5
c3f7aee30a8a374ec9d34e175b4e00c3
-
SHA1
a5c9ac0d289adbcafd1fff10647a40115f164d44
-
SHA256
16a3f436db1c927959d14daf75cf80bda4d583f429d50dbf72a5203415fa78df
-
SHA512
63ee86604a2d067fe2059b79f1e0ba87759493d31c9fd481404ba616d1a114b7a1131fb70cc25859dfbc391ada566e776614687f143f6ef9d312cba5003493e2
-
SSDEEP
1572864:DONVsmiT1o3Hn6SXrjbtJIgGMSmbCF5HE2lYAk9Os6e08p62EkWERZdjvu14ZTuk:DWFiB4H6SbAgGMSmbaHLlYDn48pNndbJ
Static task
static1
Behavioral task
behavioral1
Sample
RyuSAK-1.6.2.Setup.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
RyuSAK-1.6.2.Setup.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
RyuSAK-1.6.2.Setup.exe
-
Size
85.7MB
-
MD5
c3f7aee30a8a374ec9d34e175b4e00c3
-
SHA1
a5c9ac0d289adbcafd1fff10647a40115f164d44
-
SHA256
16a3f436db1c927959d14daf75cf80bda4d583f429d50dbf72a5203415fa78df
-
SHA512
63ee86604a2d067fe2059b79f1e0ba87759493d31c9fd481404ba616d1a114b7a1131fb70cc25859dfbc391ada566e776614687f143f6ef9d312cba5003493e2
-
SSDEEP
1572864:DONVsmiT1o3Hn6SXrjbtJIgGMSmbCF5HE2lYAk9Os6e08p62EkWERZdjvu14ZTuk:DWFiB4H6SbAgGMSmbaHLlYDn48pNndbJ
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-