Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-20_b2a09881d6cfbf55eedadd2b2b20e346_ryuk

  • Size

    3.2MB

  • Sample

    240420-nq81fagc3s

  • MD5

    b2a09881d6cfbf55eedadd2b2b20e346

  • SHA1

    ee0d5f341bf7fbc44add6aabc77a3ab9b5820009

  • SHA256

    4ea22f5f3ae8ad52a940fb39be1b330a5ebca491a81e9c885077702115ada76d

  • SHA512

    0836d59f61e836321c73a5a0ff95a544ddf2e84ff093dc83173c404391483eb56a42326cec893c6c1112bf55df55939429bde593c4ceb2a19ccde6da1c6d353e

  • SSDEEP

    49152:75k1YCdptya507NUUWn043oHS3fTIYwVq1/xT3DDbw0TUqydf9Ckt7c20+9qNxUW:PNhSMYw8yFfEkKK90

Score
7/10

Malware Config

Targets

    • Target

      2024-04-20_b2a09881d6cfbf55eedadd2b2b20e346_ryuk

    • Size

      3.2MB

    • MD5

      b2a09881d6cfbf55eedadd2b2b20e346

    • SHA1

      ee0d5f341bf7fbc44add6aabc77a3ab9b5820009

    • SHA256

      4ea22f5f3ae8ad52a940fb39be1b330a5ebca491a81e9c885077702115ada76d

    • SHA512

      0836d59f61e836321c73a5a0ff95a544ddf2e84ff093dc83173c404391483eb56a42326cec893c6c1112bf55df55939429bde593c4ceb2a19ccde6da1c6d353e

    • SSDEEP

      49152:75k1YCdptya507NUUWn043oHS3fTIYwVq1/xT3DDbw0TUqydf9Ckt7c20+9qNxUW:PNhSMYw8yFfEkKK90

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks