Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-24_8858fd20ab57416d0ae1cfe9fac5c55b_ryuk

  • Size

    5.5MB

  • Sample

    240424-ppgp8shh45

  • MD5

    8858fd20ab57416d0ae1cfe9fac5c55b

  • SHA1

    d80cde26e40a30485ee0abe3948bf65503e2c636

  • SHA256

    7c31bb9ad27972ca2be4ec6a0a02807ab014aa91ebcfc4d1274b7d2bdf2637e8

  • SHA512

    cad4dc16566511d5c4e552a9165e8083a6138d744d54347b0e61e9c66f18527873a4deac00b82db6469304e8a1e4c209cdb14bebafbb07ba3c1dbce88c5c5b27

  • SSDEEP

    49152:xEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfz:1AI5pAdVJn9tbnR1VgBVm04ujf3NuL

Score
7/10

Malware Config

Targets

    • Target

      2024-04-24_8858fd20ab57416d0ae1cfe9fac5c55b_ryuk

    • Size

      5.5MB

    • MD5

      8858fd20ab57416d0ae1cfe9fac5c55b

    • SHA1

      d80cde26e40a30485ee0abe3948bf65503e2c636

    • SHA256

      7c31bb9ad27972ca2be4ec6a0a02807ab014aa91ebcfc4d1274b7d2bdf2637e8

    • SHA512

      cad4dc16566511d5c4e552a9165e8083a6138d744d54347b0e61e9c66f18527873a4deac00b82db6469304e8a1e4c209cdb14bebafbb07ba3c1dbce88c5c5b27

    • SSDEEP

      49152:xEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfz:1AI5pAdVJn9tbnR1VgBVm04ujf3NuL

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks