Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

2025-03-20...uk.exe

windows7-x64

10

2025-03-20...uk.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2025-03-20_4b03366de1b0fabe6bc721860e3c9d2b_ponmocup_ryuk

  • Size

    10.8MB

  • Sample

    250320-bygjyatlt6

  • MD5

    4b03366de1b0fabe6bc721860e3c9d2b

  • SHA1

    c7404536af6d223b16645b5efeeff19e0eb13600

  • SHA256

    babf38e3646a622cbfd510b54516f13318dfafc2055447632f390635c0cfc0bf

  • SHA512

    3c21cd37ccdfd94f15c55e70029d967e550ade9e544a14f1690d40bd34a14d2f859fbccf3bf7c0c51e8484ee5181805ad066b883beb3b97fd1c4bc2e811a80db

  • SSDEEP

    196608:TqBMNUktjMY9onJ5hrZE6hbJMFjT48RmU/3ZlsPvFZYiBILx8C/Gu/Pxc2mKA:1BQY9c5hlE6hyFntN3ZWFZYqq4u7

Score
10/10
demonwarepyinstallerransomware

Malware Config

Targets

    • Target

      2025-03-20_4b03366de1b0fabe6bc721860e3c9d2b_ponmocup_ryuk

    • Size

      10.8MB

    • MD5

      4b03366de1b0fabe6bc721860e3c9d2b

    • SHA1

      c7404536af6d223b16645b5efeeff19e0eb13600

    • SHA256

      babf38e3646a622cbfd510b54516f13318dfafc2055447632f390635c0cfc0bf

    • SHA512

      3c21cd37ccdfd94f15c55e70029d967e550ade9e544a14f1690d40bd34a14d2f859fbccf3bf7c0c51e8484ee5181805ad066b883beb3b97fd1c4bc2e811a80db

    • SSDEEP

      196608:TqBMNUktjMY9onJ5hrZE6hbJMFjT48RmU/3ZlsPvFZYiBILx8C/Gu/Pxc2mKA:1BQY9c5hlE6hyFntN3ZWFZYqq4u7

    Score
    10/10
    demonwareransomware

    • DemonWare

      Ransomware first seen in mid-2020.

      ransomwaredemonware

    • Demonware family

      demonware

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks