f7ba16f406b37edb6cdd93e0796d7e9854330797a5eda43bc731de5e10817c92 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

2024-04-19...uk.exe

windows7-x64

5

2024-04-19...uk.exe

windows10-2004-x64

5

Sharing

General

Target

2024-04-19_9356e29e0886134b47a7cea4c1d12223_cobalt-strike_ryuk
Size

994KB
Sample

240419-mhax1aha9w
MD5

9356e29e0886134b47a7cea4c1d12223
SHA1

f13635bab18d1296e41930b9fe91eeaace9a233a
SHA256

f7ba16f406b37edb6cdd93e0796d7e9854330797a5eda43bc731de5e10817c92
SHA512

65b7da80196cf1f22f25028342548ba061dd4f3993e6c3fc0b5e6f167beb6519ff08fdfb9a0e55f2c9fc0d7dcaf85ce3de9d03417ed28f38ac10b88e91a545d5
SSDEEP

12288:KUGqQLlK62UJsp77YPmRcbo7cREtMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:zYRO7Y2cb+cREOSkQ/7Gb8NLEbeZ

Score

5^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-04-19_9356e29e0886134b47a7cea4c1d12223_cobalt-strike_ryuk.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-19_9356e29e0886134b47a7cea4c1d12223_cobalt-strike_ryuk.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-19_9356e29e0886134b47a7cea4c1d12223_cobalt-strike_ryuk
- Size
  
  994KB
- MD5
  
  9356e29e0886134b47a7cea4c1d12223
- SHA1
  
  f13635bab18d1296e41930b9fe91eeaace9a233a
- SHA256
  
  f7ba16f406b37edb6cdd93e0796d7e9854330797a5eda43bc731de5e10817c92
- SHA512
  
  65b7da80196cf1f22f25028342548ba061dd4f3993e6c3fc0b5e6f167beb6519ff08fdfb9a0e55f2c9fc0d7dcaf85ce3de9d03417ed28f38ac10b88e91a545d5
- SSDEEP
  
  12288:KUGqQLlK62UJsp77YPmRcbo7cREtMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:zYRO7Y2cb+cREOSkQ/7Gb8NLEbeZ
Score

5^/10
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy