Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-16_a3362f848186747b82f8a3d39d88cd09_ryuk

  • Size

    5.5MB

  • Sample

    240416-mgrjcsaa5x

  • MD5

    a3362f848186747b82f8a3d39d88cd09

  • SHA1

    0a441e31f4aa8ef84623325d170bde31351dde45

  • SHA256

    be867aa3c19c3e878f35806f890cec13ed50575e4ff0bc2ae86485a5754e2641

  • SHA512

    f802659a64c51bf16e575b5ad2dc1f9d1ab0f239ad0b0818d598db5776866acef2671169c991c6226de1d03a02f2f6a074cde2077c3df9af1c1d141b471daf61

  • SSDEEP

    49152:MEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Gn9tJEUxDG0BYYrLA50IHLGfX:6AI5pAdVQn9tbnR1VgBVm1fFPfUNF

Score
7/10

Malware Config

Targets

    • Target

      2024-04-16_a3362f848186747b82f8a3d39d88cd09_ryuk

    • Size

      5.5MB

    • MD5

      a3362f848186747b82f8a3d39d88cd09

    • SHA1

      0a441e31f4aa8ef84623325d170bde31351dde45

    • SHA256

      be867aa3c19c3e878f35806f890cec13ed50575e4ff0bc2ae86485a5754e2641

    • SHA512

      f802659a64c51bf16e575b5ad2dc1f9d1ab0f239ad0b0818d598db5776866acef2671169c991c6226de1d03a02f2f6a074cde2077c3df9af1c1d141b471daf61

    • SSDEEP

      49152:MEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Gn9tJEUxDG0BYYrLA50IHLGfX:6AI5pAdVQn9tbnR1VgBVm1fFPfUNF

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks