Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-12_a1c46096dfe68c1d9fb5d1653c7eb130_ryuk

  • Size

    4.6MB

  • Sample

    240612-tgrmpavcqr

  • MD5

    a1c46096dfe68c1d9fb5d1653c7eb130

  • SHA1

    e3751bd000fa3ab69a42150ad04d2a75034d1204

  • SHA256

    319c845ab6fa903116b091d3318ccc36709dd6919073ab890f950c123984e630

  • SHA512

    aa9e1ada93c3b2a655c559091592123d3bbfe0cf7a67cfd9faed39928d947e2abc23f3675f50ebfc3b4c66ecc802f940f82be3d7f9c330a38255738b15c42c40

  • SSDEEP

    49152:ondPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGf:i2D8siFIIm3Gob5iEg65tUV

Score
7/10

Malware Config

Targets

    • Target

      2024-06-12_a1c46096dfe68c1d9fb5d1653c7eb130_ryuk

    • Size

      4.6MB

    • MD5

      a1c46096dfe68c1d9fb5d1653c7eb130

    • SHA1

      e3751bd000fa3ab69a42150ad04d2a75034d1204

    • SHA256

      319c845ab6fa903116b091d3318ccc36709dd6919073ab890f950c123984e630

    • SHA512

      aa9e1ada93c3b2a655c559091592123d3bbfe0cf7a67cfd9faed39928d947e2abc23f3675f50ebfc3b4c66ecc802f940f82be3d7f9c330a38255738b15c42c40

    • SSDEEP

      49152:ondPjazwYcCOlBWD9rqGZi0iIGTHI6DOnIIeNxu6xl1aZt6m5xbzDI6bpsRJrAGf:i2D8siFIIm3Gob5iEg65tUV

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks