Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

2025-03-17...uk.exe

windows7-x64

10

2025-03-17...uk.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-17_8099f355d023f687efab26a1323977c7_ryuk

  • Size

    11.5MB

  • Sample

    250317-bw8weawsbz

  • MD5

    8099f355d023f687efab26a1323977c7

  • SHA1

    6839dd1d3b1c92ee02df1a9daa0771b83ab1a983

  • SHA256

    bf0e8e9c10d34111aa67a2ef8582518144362096c4942cec0cdc9c8c3dbfdcb9

  • SHA512

    7afade18da1755a3811b8cf0ea980077896e67eb2523bea2bb874c34d0ad076933ebfb6c12cd5dea2f33e86101544c8a77f025a58c2fff6ccd1287debd9da314

  • SSDEEP

    196608:aPXLYgk+yA9//qt++3HF9onJ5hrZEE3e9tGPqKM48RmU/3ZlsPvpEbPCTbPKRTvI:aY+Cl9c5hlEE/PNMtN3ZWqDC3PuTZU

Score
10/10
demonwarepyinstallerransomware

Malware Config

Extracted

Path

C:\Users\Admin\Desktop\README.txt

Family

demonware

Ransom Note
Tango Down! Seems like you got hit by DemonWare ransomware! Don't Panic, you get have your files back! DemonWare uses a basic encryption script to lock your files. This type of ransomware is known as CRYPTO. You'll need a decryption key in order to unlock your files. Your files will be deleted when the timer runs out, so you better hurry. You have 10 hours to find your key C'mon, be glad I don't ask for payment like other ransomware. Please visit: https://keys.zeznzo.nl and search for your IP/hostname to get your key. Kind regards, Zeznzo
URLs

https://keys.zeznzo.nl

Targets

    • Target

      2025-03-17_8099f355d023f687efab26a1323977c7_ryuk

    • Size

      11.5MB

    • MD5

      8099f355d023f687efab26a1323977c7

    • SHA1

      6839dd1d3b1c92ee02df1a9daa0771b83ab1a983

    • SHA256

      bf0e8e9c10d34111aa67a2ef8582518144362096c4942cec0cdc9c8c3dbfdcb9

    • SHA512

      7afade18da1755a3811b8cf0ea980077896e67eb2523bea2bb874c34d0ad076933ebfb6c12cd5dea2f33e86101544c8a77f025a58c2fff6ccd1287debd9da314

    • SSDEEP

      196608:aPXLYgk+yA9//qt++3HF9onJ5hrZEE3e9tGPqKM48RmU/3ZlsPvpEbPCTbPKRTvI:aY+Cl9c5hlEE/PNMtN3ZWqDC3PuTZU

    Score
    10/10
    demonwareransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks