Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-04-29...uk.exe

windows7-x64

1

2024-04-29...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-29_2f5783d00ba0ca5e69720bef1f4b0fe4_ryuk

  • Size

    5.5MB

  • Sample

    240429-yhtkwsbe3y

  • MD5

    2f5783d00ba0ca5e69720bef1f4b0fe4

  • SHA1

    e6c1b377da6c10b7c34d2733e51b95553b53a5b7

  • SHA256

    9d6f757f4bfcd703901b3aba771dcc876be6dfabc693d653f060facc738f67f4

  • SHA512

    9b896df895d559485df927e54548738fe1c9c62277f03af1d9093890093793ca07598784ed3810e09dfdfdbe1c74e6f6268c66420ced5e2704ca04cae0402281

  • SSDEEP

    49152:zEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf6:vAI5pAdVJn9tbnR1VgBVmkQWdO

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-29_2f5783d00ba0ca5e69720bef1f4b0fe4_ryuk

    • Size

      5.5MB

    • MD5

      2f5783d00ba0ca5e69720bef1f4b0fe4

    • SHA1

      e6c1b377da6c10b7c34d2733e51b95553b53a5b7

    • SHA256

      9d6f757f4bfcd703901b3aba771dcc876be6dfabc693d653f060facc738f67f4

    • SHA512

      9b896df895d559485df927e54548738fe1c9c62277f03af1d9093890093793ca07598784ed3810e09dfdfdbe1c74e6f6268c66420ced5e2704ca04cae0402281

    • SSDEEP

      49152:zEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGf6:vAI5pAdVJn9tbnR1VgBVmkQWdO

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks