Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-08-24_42f07b94e97a42b8b637e4d0d4f8c9f9_cobalt-strike_ryuk

  • Size

    1.9MB

  • Sample

    240824-lqncmawclk

  • MD5

    42f07b94e97a42b8b637e4d0d4f8c9f9

  • SHA1

    e1db80adb8a077be6c5709ccec475a8f8cd20381

  • SHA256

    a26779faec487af2c4107240c5a645a64bbd7a397490b075fbe1b23e83ec43ce

  • SHA512

    3a1f03bbdb86a5b4cc7ffb52e778b7b42c5c3c57fb2167486e2b3d3dc16dd3469c950aeb993244952a485eb15aa61469f9c899cd794e3251385aced2bb7af28c

  • SSDEEP

    49152:cVOyh+50zyxIJgDUYmvFur31yAipQCtXxc0H:Yho0zQU7dG1yfpVBlH

Score
7/10

Malware Config

Targets

    • Target

      2024-08-24_42f07b94e97a42b8b637e4d0d4f8c9f9_cobalt-strike_ryuk

    • Size

      1.9MB

    • MD5

      42f07b94e97a42b8b637e4d0d4f8c9f9

    • SHA1

      e1db80adb8a077be6c5709ccec475a8f8cd20381

    • SHA256

      a26779faec487af2c4107240c5a645a64bbd7a397490b075fbe1b23e83ec43ce

    • SHA512

      3a1f03bbdb86a5b4cc7ffb52e778b7b42c5c3c57fb2167486e2b3d3dc16dd3469c950aeb993244952a485eb15aa61469f9c899cd794e3251385aced2bb7af28c

    • SSDEEP

      49152:cVOyh+50zyxIJgDUYmvFur31yAipQCtXxc0H:Yho0zQU7dG1yfpVBlH

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks