Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-05_61337646f247a62eefe24a0e74ce9779_ryuk

  • Size

    2.1MB

  • Sample

    240405-pc26eacb68

  • MD5

    61337646f247a62eefe24a0e74ce9779

  • SHA1

    55e9f18627208647444428de6c1e96605f48fd02

  • SHA256

    ffe53471e55a5ae9e30cd10548d98b4f328626450a6e091408b31994193877bb

  • SHA512

    42b7efe1ce9454188beab34d6ca10ffb46c5dd0f65d4399ea50572c753537108b9ea4ee8819ff5e775ea38e148e02426e64157d438ceabbf9a6e386437bddf2f

  • SSDEEP

    49152:WsOwbb13ntb+g2nxDv1PZ1LTb3vHs3M9sR:WI13tb+Z3zs3/

Score
7/10

Malware Config

Targets

    • Target

      2024-04-05_61337646f247a62eefe24a0e74ce9779_ryuk

    • Size

      2.1MB

    • MD5

      61337646f247a62eefe24a0e74ce9779

    • SHA1

      55e9f18627208647444428de6c1e96605f48fd02

    • SHA256

      ffe53471e55a5ae9e30cd10548d98b4f328626450a6e091408b31994193877bb

    • SHA512

      42b7efe1ce9454188beab34d6ca10ffb46c5dd0f65d4399ea50572c753537108b9ea4ee8819ff5e775ea38e148e02426e64157d438ceabbf9a6e386437bddf2f

    • SSDEEP

      49152:WsOwbb13ntb+g2nxDv1PZ1LTb3vHs3M9sR:WI13tb+Z3zs3/

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks