Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-29...uk.exe

windows7-x64

1

2024-05-29...uk.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-29_00a6138b42246632a5b0c15e8402dfeb_ryuk

  • Size

    5.5MB

  • Sample

    240529-t8sztsbf9x

  • MD5

    00a6138b42246632a5b0c15e8402dfeb

  • SHA1

    01eef133e4aca58013093a83ca4d4c963e52ce98

  • SHA256

    ec17a57ab7ad8a3fd0e51b8c7d9a4d88a412e2cae5d0206f1eee7de268270832

  • SHA512

    9c0112670282b72c5f7425131de2c30230455c21f608488f2a0596fa372538a5c79252f17c900b2d2e7641f0d9820a4ed5980a52cba3df5f46efb950c289c4f0

  • SSDEEP

    49152:YEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfj:2AI5pAdVJn9tbnR1VgBVmkeD5s0JXP

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-29_00a6138b42246632a5b0c15e8402dfeb_ryuk

    • Size

      5.5MB

    • MD5

      00a6138b42246632a5b0c15e8402dfeb

    • SHA1

      01eef133e4aca58013093a83ca4d4c963e52ce98

    • SHA256

      ec17a57ab7ad8a3fd0e51b8c7d9a4d88a412e2cae5d0206f1eee7de268270832

    • SHA512

      9c0112670282b72c5f7425131de2c30230455c21f608488f2a0596fa372538a5c79252f17c900b2d2e7641f0d9820a4ed5980a52cba3df5f46efb950c289c4f0

    • SSDEEP

      49152:YEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGfj:2AI5pAdVJn9tbnR1VgBVmkeD5s0JXP

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks