Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-04-29_dc6b86f94fdfd66ae253ebee6aff4a8d_bkransomware

  • Size

    96KB

  • Sample

    240429-be537adf33

  • MD5

    dc6b86f94fdfd66ae253ebee6aff4a8d

  • SHA1

    691180ddc186125ad9fa81ea6c70b338ea6a7461

  • SHA256

    f79c5fe0323d559e04fe8f6dfe07f04b0d27cc2ed76dfc6004ca1d6d780c2ebc

  • SHA512

    877e93b520c36ac52c45a538662d81a11700a88f84c111a12f621b6aa874b1badbe019c7b8d1bc74d3441f3a726c44e854ea253eecb90563869e645e25283aec

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTr/uo0Iuu6P+j7kKEyG:ZRpAyazIliazTr/b0UWS7kKEX

Malware Config

Targets

    • Target

      2024-04-29_dc6b86f94fdfd66ae253ebee6aff4a8d_bkransomware

    • Size

      96KB

    • MD5

      dc6b86f94fdfd66ae253ebee6aff4a8d

    • SHA1

      691180ddc186125ad9fa81ea6c70b338ea6a7461

    • SHA256

      f79c5fe0323d559e04fe8f6dfe07f04b0d27cc2ed76dfc6004ca1d6d780c2ebc

    • SHA512

      877e93b520c36ac52c45a538662d81a11700a88f84c111a12f621b6aa874b1badbe019c7b8d1bc74d3441f3a726c44e854ea253eecb90563869e645e25283aec

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTr/uo0Iuu6P+j7kKEyG:ZRpAyazIliazTr/b0UWS7kKEX

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks