Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-08_b791f792877b96371c528910424e441d_ryuk

  • Size

    5.5MB

  • Sample

    240408-t71chsea94

  • MD5

    b791f792877b96371c528910424e441d

  • SHA1

    7ab0d0277273be20481584a495290ccd12bb6c40

  • SHA256

    670358832cdc68c9c441f1ac87c58abee8eb62ba7d93c5913996fc8e87205508

  • SHA512

    b0314b3d0af69600040131546f516e0776d1f8339ea2305d116ee6a964245628d061d58004b70f1475f3667a67dd10ee8cb669b588b49503e3891b823895569d

  • SSDEEP

    98304:5AI5pAdVJn9tbnR1VgBVmF70uMhSBrkNq:5AsCh7XYOIoQ

Score
7/10

Malware Config

Targets

    • Target

      2024-04-08_b791f792877b96371c528910424e441d_ryuk

    • Size

      5.5MB

    • MD5

      b791f792877b96371c528910424e441d

    • SHA1

      7ab0d0277273be20481584a495290ccd12bb6c40

    • SHA256

      670358832cdc68c9c441f1ac87c58abee8eb62ba7d93c5913996fc8e87205508

    • SHA512

      b0314b3d0af69600040131546f516e0776d1f8339ea2305d116ee6a964245628d061d58004b70f1475f3667a67dd10ee8cb669b588b49503e3891b823895569d

    • SSDEEP

      98304:5AI5pAdVJn9tbnR1VgBVmF70uMhSBrkNq:5AsCh7XYOIoQ

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks