Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-23_04b79b64acb9a52a35de81f9c5af1742_ryuk

  • Size

    2.2MB

  • Sample

    240423-xdmfcaag7s

  • MD5

    04b79b64acb9a52a35de81f9c5af1742

  • SHA1

    c443d681e7fc1e5e51dc6a6def3aaad010c93ee5

  • SHA256

    ef149359fdbc7b8388dc583d8d4180bc99d15f22f068e2e50fa7845fd9b2221a

  • SHA512

    d0ff83ecf57b03d8f077252116f68a859e180746eb7fa2f3737245ececaba05ab062184e4c2f30e1ac349f0abf1ef837e8eb5f19acbc07c72c0d104f03d39c81

  • SSDEEP

    24576:pOObVw4TaN1wdFukCba4oXtgLhU3wEdmh5819LYuMslorttddRZ:pOOh3aN4FuLbegmtG4tYuM8ort9

Score
7/10

Malware Config

Targets

    • Target

      2024-04-23_04b79b64acb9a52a35de81f9c5af1742_ryuk

    • Size

      2.2MB

    • MD5

      04b79b64acb9a52a35de81f9c5af1742

    • SHA1

      c443d681e7fc1e5e51dc6a6def3aaad010c93ee5

    • SHA256

      ef149359fdbc7b8388dc583d8d4180bc99d15f22f068e2e50fa7845fd9b2221a

    • SHA512

      d0ff83ecf57b03d8f077252116f68a859e180746eb7fa2f3737245ececaba05ab062184e4c2f30e1ac349f0abf1ef837e8eb5f19acbc07c72c0d104f03d39c81

    • SSDEEP

      24576:pOObVw4TaN1wdFukCba4oXtgLhU3wEdmh5819LYuMslorttddRZ:pOOh3aN4FuLbegmtG4tYuM8ort9

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks