Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-15_02151f18d97f5a3d5122c690b0a7e1f8_ryuk

  • Size

    1.6MB

  • Sample

    240615-w2k2razgmg

  • MD5

    02151f18d97f5a3d5122c690b0a7e1f8

  • SHA1

    cbb8031e40dbdf22dbc86a857c82ef805795b022

  • SHA256

    fc86ab2c74a61c9651d7a924712dae8d26b0ead27c1a2b0e1c4f43e0c8b51dee

  • SHA512

    205579b60aff9a623eadab5af637fff22e3c3c652dbb280a1dbfe3d6c23bda9b3526530212bddd2143c085d7d94af1b53d5f6afcd7bd422d5fb897430a28047b

  • SSDEEP

    12288:O1MKvvgcgZwdQVDgEZXIBaxqCKi60RoaItZICRtjch0Kp2H3HqFShkPUzlZjOJ:OmGnpdQ+EiAkbwRobfHRFcbK3eUKUzy

Score
7/10

Malware Config

Targets

    • Target

      2024-06-15_02151f18d97f5a3d5122c690b0a7e1f8_ryuk

    • Size

      1.6MB

    • MD5

      02151f18d97f5a3d5122c690b0a7e1f8

    • SHA1

      cbb8031e40dbdf22dbc86a857c82ef805795b022

    • SHA256

      fc86ab2c74a61c9651d7a924712dae8d26b0ead27c1a2b0e1c4f43e0c8b51dee

    • SHA512

      205579b60aff9a623eadab5af637fff22e3c3c652dbb280a1dbfe3d6c23bda9b3526530212bddd2143c085d7d94af1b53d5f6afcd7bd422d5fb897430a28047b

    • SSDEEP

      12288:O1MKvvgcgZwdQVDgEZXIBaxqCKi60RoaItZICRtjch0Kp2H3HqFShkPUzlZjOJ:OmGnpdQ+EiAkbwRobfHRFcbK3eUKUzy

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks