Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-15_c496f160ec54f9a8ed6f43b4fe45bac4_ryuk

  • Size

    1.6MB

  • Sample

    240615-xp9d9awajk

  • MD5

    c496f160ec54f9a8ed6f43b4fe45bac4

  • SHA1

    1c5cdb30fc6c02971486b14fb7a249162bba65c6

  • SHA256

    3196109052c16c2a59834f9b99b85eff0ec3e0c549c790fbb686eb8f3c3980f7

  • SHA512

    7c8b98db3884279d2114514c67c2b4c91558040c45f2c038cab0072f3f125f4de7f4988a3969ff346aa5a5b8fb88f95cf0c2aa05c6a7248a428b9ed30ff69998

  • SSDEEP

    12288:2+0r6a0Nl0JVDgEZXIBaxqCKi60RoaItZICRtjch0Kp2H3HqFShkPUzlZjOJ:ZbK+EiAkbwRobfHRFcbK3eUKUzy

Score
7/10

Malware Config

Targets

    • Target

      2024-06-15_c496f160ec54f9a8ed6f43b4fe45bac4_ryuk

    • Size

      1.6MB

    • MD5

      c496f160ec54f9a8ed6f43b4fe45bac4

    • SHA1

      1c5cdb30fc6c02971486b14fb7a249162bba65c6

    • SHA256

      3196109052c16c2a59834f9b99b85eff0ec3e0c549c790fbb686eb8f3c3980f7

    • SHA512

      7c8b98db3884279d2114514c67c2b4c91558040c45f2c038cab0072f3f125f4de7f4988a3969ff346aa5a5b8fb88f95cf0c2aa05c6a7248a428b9ed30ff69998

    • SSDEEP

      12288:2+0r6a0Nl0JVDgEZXIBaxqCKi60RoaItZICRtjch0Kp2H3HqFShkPUzlZjOJ:ZbK+EiAkbwRobfHRFcbK3eUKUzy

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks