Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-04-20...uk.exe

windows7-x64

7

2024-04-20...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-20_5e1985d4bb3e321dc10db63bdc2e7f20_ryuk

  • Size

    4.1MB

  • Sample

    240420-m3gahseh64

  • MD5

    5e1985d4bb3e321dc10db63bdc2e7f20

  • SHA1

    eb3f8c770d1962aaa9e3a5f4e6b4fefdc04948e4

  • SHA256

    9b64b610c493568260b981d8efbca0baadfd0b2dba81c7f9901fade5594f6675

  • SHA512

    8c14f6db79b69b03a8959cec997d67b07d70d54da5c305a4b0ca95b948e1cca9d65aae4b0eac865879c29f2f3abf874779fb0b675e1cfe94c9c3048a5bd75de2

  • SSDEEP

    49152:F5Viqwo4KxghcyJLBaSbvviqMjfBV+TFZ1bBzP7n1Y8/17MVfw1QSXm+RFvTCr90:FBfr+TFFqRlw6a+ZfEkKK90

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-20_5e1985d4bb3e321dc10db63bdc2e7f20_ryuk

    • Size

      4.1MB

    • MD5

      5e1985d4bb3e321dc10db63bdc2e7f20

    • SHA1

      eb3f8c770d1962aaa9e3a5f4e6b4fefdc04948e4

    • SHA256

      9b64b610c493568260b981d8efbca0baadfd0b2dba81c7f9901fade5594f6675

    • SHA512

      8c14f6db79b69b03a8959cec997d67b07d70d54da5c305a4b0ca95b948e1cca9d65aae4b0eac865879c29f2f3abf874779fb0b675e1cfe94c9c3048a5bd75de2

    • SSDEEP

      49152:F5Viqwo4KxghcyJLBaSbvviqMjfBV+TFZ1bBzP7n1Y8/17MVfw1QSXm+RFvTCr90:FBfr+TFFqRlw6a+ZfEkKK90

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks