Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2025-03-21_c028d3ef04146cefb5974e9fbf583453_ponmocup_ryuk
-
Size
12.0MB
-
Sample
250321-ckj9cawjv9
-
MD5
c028d3ef04146cefb5974e9fbf583453
-
SHA1
279d260557282286a9b24c4a6a240d78c9887d5a
-
SHA256
8126e103f575ebea6964e969f299202616f54efe7cf8a2450d9a9ff2fddd06eb
-
SHA512
55320a785160263bf2660549a4ee119a9fabc3b2a68d5c27da914b5eda14218c6d8527163553812acf4473bf67b15f46d521864d9c89d9216598c50c883cbb60
-
SSDEEP
196608:T4pf4Dz52nt/tv1MfHrODpFC4g0AVIGvr8ZJ9BIBxIFO48RmU/3ZlsPvmuR5DTbq:Ml4Dgt/xcKLgtIGWYXIotN3ZWLJzBv
Malware Config
Extracted
C:\Users\Admin\Desktop\README.txt
demonware
Targets
-
-
Target
2025-03-21_c028d3ef04146cefb5974e9fbf583453_ponmocup_ryuk
-
Size
12.0MB
-
MD5
c028d3ef04146cefb5974e9fbf583453
-
SHA1
279d260557282286a9b24c4a6a240d78c9887d5a
-
SHA256
8126e103f575ebea6964e969f299202616f54efe7cf8a2450d9a9ff2fddd06eb
-
SHA512
55320a785160263bf2660549a4ee119a9fabc3b2a68d5c27da914b5eda14218c6d8527163553812acf4473bf67b15f46d521864d9c89d9216598c50c883cbb60
-
SSDEEP
196608:T4pf4Dz52nt/tv1MfHrODpFC4g0AVIGvr8ZJ9BIBxIFO48RmU/3ZlsPvmuR5DTbq:Ml4Dgt/xcKLgtIGWYXIotN3ZWLJzBv
Score10/10-
DemonWare
Ransomware first seen in mid-2020.
-
Demonware family
-
Loads dropped DLL
-