Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-18_39491893d9403460ebd122673fa77f73_ryuk

  • Size

    5.5MB

  • Sample

    240418-hynftaec94

  • MD5

    39491893d9403460ebd122673fa77f73

  • SHA1

    71a883c6d788cc97feaccc0f845b0d96fd7737a1

  • SHA256

    c0dc57b80ecc4ae81e503ffd0c156bc450abb16cdd2ebafc5a1a5d8f6299b6e2

  • SHA512

    d7d2fbd983351949c84b930ea5cf51d1b311212fc024d999b50d65a115a4ca917c03159a9f6473b79e36e7598087a5a2e6a0d0e25903351c09392770433069a5

  • SSDEEP

    49152:yEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1cn9tJEUxDG0BYYrLA50IHLGfQ:YAI5pAdVen9tbnR1VgBVmb2FuzTw

Score
7/10

Malware Config

Targets

    • Target

      2024-04-18_39491893d9403460ebd122673fa77f73_ryuk

    • Size

      5.5MB

    • MD5

      39491893d9403460ebd122673fa77f73

    • SHA1

      71a883c6d788cc97feaccc0f845b0d96fd7737a1

    • SHA256

      c0dc57b80ecc4ae81e503ffd0c156bc450abb16cdd2ebafc5a1a5d8f6299b6e2

    • SHA512

      d7d2fbd983351949c84b930ea5cf51d1b311212fc024d999b50d65a115a4ca917c03159a9f6473b79e36e7598087a5a2e6a0d0e25903351c09392770433069a5

    • SSDEEP

      49152:yEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1cn9tJEUxDG0BYYrLA50IHLGfQ:YAI5pAdVen9tbnR1VgBVmb2FuzTw

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks