Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-03-09...uk.exe

windows7-x64

7

2024-03-09...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-09_3adb8aafc9a212580469a176827d3fcf_ryuk

  • Size

    1.1MB

  • Sample

    240309-lfrbjafd8z

  • MD5

    3adb8aafc9a212580469a176827d3fcf

  • SHA1

    0749309028cdbb5caef4f61db05facd2caf2cfd9

  • SHA256

    60615c93de7f9acf8297cbd5e3b632f3a776d50cd1189e5d4c3df886c89d6540

  • SHA512

    fb58dca09227a51df38195a58c6e04b88f47a092bf86536a3b79f80fbc202d78fe9b7ecf15f565f1a7c685dbf2c56c6a255925d080580612f0073af5fb657e0e

  • SSDEEP

    24576:MSi1SoCU5qJSr1eWPSCsP0MugC6eTC3taqRLJoJCjkliTwQ9Ctw7cmVr+EucFc:kS7PLjeTgaqxvwYTV9CtsFTFc

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-03-09_3adb8aafc9a212580469a176827d3fcf_ryuk

    • Size

      1.1MB

    • MD5

      3adb8aafc9a212580469a176827d3fcf

    • SHA1

      0749309028cdbb5caef4f61db05facd2caf2cfd9

    • SHA256

      60615c93de7f9acf8297cbd5e3b632f3a776d50cd1189e5d4c3df886c89d6540

    • SHA512

      fb58dca09227a51df38195a58c6e04b88f47a092bf86536a3b79f80fbc202d78fe9b7ecf15f565f1a7c685dbf2c56c6a255925d080580612f0073af5fb657e0e

    • SSDEEP

      24576:MSi1SoCU5qJSr1eWPSCsP0MugC6eTC3taqRLJoJCjkliTwQ9Ctw7cmVr+EucFc:kS7PLjeTgaqxvwYTV9CtsFTFc

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks