Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-01_6c7504c5626db4dd99f7a410ed3ce3e9_bkransomware

  • Size

    247KB

  • Sample

    240501-rrslmaba49

  • MD5

    6c7504c5626db4dd99f7a410ed3ce3e9

  • SHA1

    664684d8f064e99a2fa453f745f886e2271f3627

  • SHA256

    ae765c77668b8037c67af0192a347874f96a2d251167239bcd75c70594cc61b5

  • SHA512

    b57f73ae41ded3367a716ebe89c70644d240d0e30c4de15a4f99ed04f1420a3eca75e1a45373d6323119f6d12c3ee471cbff40676aa72465ae6cda8cf3cc9646

  • SSDEEP

    3072:ZRpAyazIliazTZ/7OEcMpySU7sGRHuhfuVPjlCM/v0iyiZFXp/HAq2wht2r2lqJ:xZ8aztaEcMSBM5uVv0ViZFX9gC2ilo

Malware Config

Targets

    • Target

      2024-05-01_6c7504c5626db4dd99f7a410ed3ce3e9_bkransomware

    • Size

      247KB

    • MD5

      6c7504c5626db4dd99f7a410ed3ce3e9

    • SHA1

      664684d8f064e99a2fa453f745f886e2271f3627

    • SHA256

      ae765c77668b8037c67af0192a347874f96a2d251167239bcd75c70594cc61b5

    • SHA512

      b57f73ae41ded3367a716ebe89c70644d240d0e30c4de15a4f99ed04f1420a3eca75e1a45373d6323119f6d12c3ee471cbff40676aa72465ae6cda8cf3cc9646

    • SSDEEP

      3072:ZRpAyazIliazTZ/7OEcMpySU7sGRHuhfuVPjlCM/v0iyiZFXp/HAq2wht2r2lqJ:xZ8aztaEcMSBM5uVv0ViZFX9gC2ilo

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks