Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-05_43e12ddb24aad431b0a7383f4c771bf2_ryuk

  • Size

    4.6MB

  • Sample

    240605-3vnydsda99

  • MD5

    43e12ddb24aad431b0a7383f4c771bf2

  • SHA1

    750435b39930891676f2207114e38ef451523a3f

  • SHA256

    12bd1ce52e5361cee88a6ac1f5d6997199b630fa165ae071062f801cae89522d

  • SHA512

    1fdbdaed98bfc62fb007ca47a3ef3db31ba30a980a136e7edfda51eecb6815adf39182f4a169da17d3ef69e85188ed50f4f2561f18b26c8823075c7b7b71dad6

  • SSDEEP

    49152:nndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGC:v2D8siFIIm3Gob5iEDUyuFC4Qmd1

Score
7/10

Malware Config

Targets

    • Target

      2024-06-05_43e12ddb24aad431b0a7383f4c771bf2_ryuk

    • Size

      4.6MB

    • MD5

      43e12ddb24aad431b0a7383f4c771bf2

    • SHA1

      750435b39930891676f2207114e38ef451523a3f

    • SHA256

      12bd1ce52e5361cee88a6ac1f5d6997199b630fa165ae071062f801cae89522d

    • SHA512

      1fdbdaed98bfc62fb007ca47a3ef3db31ba30a980a136e7edfda51eecb6815adf39182f4a169da17d3ef69e85188ed50f4f2561f18b26c8823075c7b7b71dad6

    • SSDEEP

      49152:nndPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGC:v2D8siFIIm3Gob5iEDUyuFC4Qmd1

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks