Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-21...uk.exe

windows7-x64

1

2024-05-21...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-21_01ad619db1e90a6c3c888853a710119a_ryuk

  • Size

    5.5MB

  • Sample

    240521-pxxfnaec3w

  • MD5

    01ad619db1e90a6c3c888853a710119a

  • SHA1

    a0ddb94db700804460bd1eeba83fbe90df219600

  • SHA256

    dab8467aa970caa3dcfc4840642cec871a77c64a0ef1eae0c6c56c939db8f390

  • SHA512

    6cbfd4bdaaab7ddd10e9eadb6650bfa27063622cdffcf58064d1cbb4b90c03c1c78e04adb4100d2a7ec90c43be7392aed6bebc2ab5ed4f6947444800c2c7a684

  • SSDEEP

    49152:jEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfi:/AI5pAdVJn9tbnR1VgBVmMqo4w

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-21_01ad619db1e90a6c3c888853a710119a_ryuk

    • Size

      5.5MB

    • MD5

      01ad619db1e90a6c3c888853a710119a

    • SHA1

      a0ddb94db700804460bd1eeba83fbe90df219600

    • SHA256

      dab8467aa970caa3dcfc4840642cec871a77c64a0ef1eae0c6c56c939db8f390

    • SHA512

      6cbfd4bdaaab7ddd10e9eadb6650bfa27063622cdffcf58064d1cbb4b90c03c1c78e04adb4100d2a7ec90c43be7392aed6bebc2ab5ed4f6947444800c2c7a684

    • SSDEEP

      49152:jEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfi:/AI5pAdVJn9tbnR1VgBVmMqo4w

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks