Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-03_905f2311a180ec3bce2aa7e517c2c671_bkransomware

  • Size

    135KB

  • Sample

    240503-mhx3jace4z

  • MD5

    905f2311a180ec3bce2aa7e517c2c671

  • SHA1

    48d8ea911d0fc45143df8efc2b0c17e72bab3d17

  • SHA256

    237cd66950f0ea22643de353894a495688ba574355a8156f9fc5ed3a26e5e6c1

  • SHA512

    2cfe78d9af5e31117077c586d398f2fe01d1c69a30adcc5d62c052dcff6599c8f8dae3b226a146f6f175a276ffd4d29ef640daecbc5cad79f41749ab375ea7b2

  • SSDEEP

    3072:ZhpAyazIlyazTL5L/2eKFhhH47GCzp0uqUOPF:hZMaz1TePnCzKJPF

Malware Config

Targets

    • Target

      2024-05-03_905f2311a180ec3bce2aa7e517c2c671_bkransomware

    • Size

      135KB

    • MD5

      905f2311a180ec3bce2aa7e517c2c671

    • SHA1

      48d8ea911d0fc45143df8efc2b0c17e72bab3d17

    • SHA256

      237cd66950f0ea22643de353894a495688ba574355a8156f9fc5ed3a26e5e6c1

    • SHA512

      2cfe78d9af5e31117077c586d398f2fe01d1c69a30adcc5d62c052dcff6599c8f8dae3b226a146f6f175a276ffd4d29ef640daecbc5cad79f41749ab375ea7b2

    • SSDEEP

      3072:ZhpAyazIlyazTL5L/2eKFhhH47GCzp0uqUOPF:hZMaz1TePnCzKJPF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks