Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-10_0d558fdac6b405f59ed1d9e486fa6515_ryuk

  • Size

    5.5MB

  • Sample

    240410-q1c2vshf88

  • MD5

    0d558fdac6b405f59ed1d9e486fa6515

  • SHA1

    b93ee79a8f3d2570d8097499919fe1fd86ca04e1

  • SHA256

    9dd6dd5331697a53f7f9f104ec124f52e250a995f5fa08712ac84f6553f2ecac

  • SHA512

    307f31eb037f89849136ddc753d8caf9b198e9253768b21806c79ff2ad82b65ddde806ee878b27f695dc1b7c2c1a74024627713f10e983a5f81e61de0cafde22

  • SSDEEP

    49152:WEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf7:sAI5pAdVJn9tbnR1VgBVmxnlS

Score
7/10

Malware Config

Targets

    • Target

      2024-04-10_0d558fdac6b405f59ed1d9e486fa6515_ryuk

    • Size

      5.5MB

    • MD5

      0d558fdac6b405f59ed1d9e486fa6515

    • SHA1

      b93ee79a8f3d2570d8097499919fe1fd86ca04e1

    • SHA256

      9dd6dd5331697a53f7f9f104ec124f52e250a995f5fa08712ac84f6553f2ecac

    • SHA512

      307f31eb037f89849136ddc753d8caf9b198e9253768b21806c79ff2ad82b65ddde806ee878b27f695dc1b7c2c1a74024627713f10e983a5f81e61de0cafde22

    • SSDEEP

      49152:WEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf7:sAI5pAdVJn9tbnR1VgBVmxnlS

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks