Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-06_ea1e1cfd043c209af266971d73349039_cobalt-strike_ryuk

  • Size

    796KB

  • Sample

    240406-q5gwlsbg21

  • MD5

    ea1e1cfd043c209af266971d73349039

  • SHA1

    90cf60d715371f9a1482415f8d31bab4dc3922d8

  • SHA256

    235affa198e8bf00b2462cfbcd4fcbfa3b4476c8aa2acc97bf562b0ec302f3ed

  • SHA512

    6745e16531128e8746b67f2e066688519169b3ddfc91a6ac075701974be90b486621cd34c932fa05abab8a76f372c9941e82c75504b695b019be29c36bc3ce23

  • SSDEEP

    12288:pXDCAZzP/w24lhGMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:IANw243zSkQ/7Gb8NLEbeZ

Score
7/10

Malware Config

Targets

    • Target

      2024-04-06_ea1e1cfd043c209af266971d73349039_cobalt-strike_ryuk

    • Size

      796KB

    • MD5

      ea1e1cfd043c209af266971d73349039

    • SHA1

      90cf60d715371f9a1482415f8d31bab4dc3922d8

    • SHA256

      235affa198e8bf00b2462cfbcd4fcbfa3b4476c8aa2acc97bf562b0ec302f3ed

    • SHA512

      6745e16531128e8746b67f2e066688519169b3ddfc91a6ac075701974be90b486621cd34c932fa05abab8a76f372c9941e82c75504b695b019be29c36bc3ce23

    • SSDEEP

      12288:pXDCAZzP/w24lhGMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:IANw243zSkQ/7Gb8NLEbeZ

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks