Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-03_c0fc2da9c7df92787e67caee0bcc93f9_bkransomware

  • Size

    288KB

  • Sample

    240503-ec89lsgd97

  • MD5

    c0fc2da9c7df92787e67caee0bcc93f9

  • SHA1

    decfb755e5056fddcd4df69795ea5ac7f2d964fa

  • SHA256

    93a56e357be531e2a016af7e6582d5956e00a0622bc3837c8df3a359b5eb8a20

  • SHA512

    d6320d035400c5340bb311d4603e7aa0bc2dcdb4fdba4dff99723c7324c559cb4d866065ac7a715f5714d9924ceb2993bf4da1f9f2eef1b6a9ee48e8bfb3f382

  • SSDEEP

    6144:hZMazklZpNoLG69jWbAF+W99BwM1UR73//JixIlJu9ij5+l/0fDQ2dB:hS0klZkd9qAF+e9BOR734Qj5w/4FB

Malware Config

Targets

    • Target

      2024-05-03_c0fc2da9c7df92787e67caee0bcc93f9_bkransomware

    • Size

      288KB

    • MD5

      c0fc2da9c7df92787e67caee0bcc93f9

    • SHA1

      decfb755e5056fddcd4df69795ea5ac7f2d964fa

    • SHA256

      93a56e357be531e2a016af7e6582d5956e00a0622bc3837c8df3a359b5eb8a20

    • SHA512

      d6320d035400c5340bb311d4603e7aa0bc2dcdb4fdba4dff99723c7324c559cb4d866065ac7a715f5714d9924ceb2993bf4da1f9f2eef1b6a9ee48e8bfb3f382

    • SSDEEP

      6144:hZMazklZpNoLG69jWbAF+W99BwM1UR73//JixIlJu9ij5+l/0fDQ2dB:hS0klZkd9qAF+e9BOR734Qj5w/4FB

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks