Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-24_e12124fd01868dc353d9d07760ae4f79_ryuk

  • Size

    5.5MB

  • Sample

    240424-yvst5agf85

  • MD5

    e12124fd01868dc353d9d07760ae4f79

  • SHA1

    8184fd08d740cd6ad86a6cf825e0668877727181

  • SHA256

    1563e3ec589ddf69bf5d2144218560cdd51722ef39559e976a1c7aacd7488948

  • SHA512

    4e99283c618c70e05eade56490e9b4d840b4297ca02c379df8bb2e99530d2d7be15b6032c0b8f9b054f48ff5d3315e2216f24d8d88b4478be0f7b64fdc6c6333

  • SSDEEP

    49152:PEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1tn9tJEUxDG0BYYrLA50IHLGfc:rAI5pAdV/n9tbnR1VgBVmTFz9Kn

Score
7/10

Malware Config

Targets

    • Target

      2024-04-24_e12124fd01868dc353d9d07760ae4f79_ryuk

    • Size

      5.5MB

    • MD5

      e12124fd01868dc353d9d07760ae4f79

    • SHA1

      8184fd08d740cd6ad86a6cf825e0668877727181

    • SHA256

      1563e3ec589ddf69bf5d2144218560cdd51722ef39559e976a1c7aacd7488948

    • SHA512

      4e99283c618c70e05eade56490e9b4d840b4297ca02c379df8bb2e99530d2d7be15b6032c0b8f9b054f48ff5d3315e2216f24d8d88b4478be0f7b64fdc6c6333

    • SSDEEP

      49152:PEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1tn9tJEUxDG0BYYrLA50IHLGfc:rAI5pAdV/n9tbnR1VgBVmTFz9Kn

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks