Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-28_2112c6d58b2859991f8eb498f1dea1ce_ryuk

  • Size

    5.5MB

  • Sample

    240528-a6vk4agc5v

  • MD5

    2112c6d58b2859991f8eb498f1dea1ce

  • SHA1

    bcecf781eec650cd7cdf195e8470ffef337d6b47

  • SHA256

    156829f040d23d4758475887344168577a5aafb638c0ff57ccb23c760c847097

  • SHA512

    520d816706046fb1d2ae9e9aa710df09b0aa0ef83f1298fe2da536ad97af8d6d1675e8fe6ad326cee24eef4b25af50090d9b92254672eda22095be1cfb37329f

  • SSDEEP

    98304:yAI5pAdVen9tbnR1VgBVmRGEI1DVWh7Px:yAsCc7XYlB6

Score
7/10

Malware Config

Targets

    • Target

      2024-05-28_2112c6d58b2859991f8eb498f1dea1ce_ryuk

    • Size

      5.5MB

    • MD5

      2112c6d58b2859991f8eb498f1dea1ce

    • SHA1

      bcecf781eec650cd7cdf195e8470ffef337d6b47

    • SHA256

      156829f040d23d4758475887344168577a5aafb638c0ff57ccb23c760c847097

    • SHA512

      520d816706046fb1d2ae9e9aa710df09b0aa0ef83f1298fe2da536ad97af8d6d1675e8fe6ad326cee24eef4b25af50090d9b92254672eda22095be1cfb37329f

    • SSDEEP

      98304:yAI5pAdVen9tbnR1VgBVmRGEI1DVWh7Px:yAsCc7XYlB6

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks