Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-03_46a27c782b09f4a602730e8b1cad3627_bkransomware

  • Size

    7.3MB

  • Sample

    240503-wgmd3scb7v

  • MD5

    46a27c782b09f4a602730e8b1cad3627

  • SHA1

    10b7660cccc7e4a3fe105fb9b1cad49732834a0b

  • SHA256

    14791264a3918650fcb150c11e59e308dc1131eb08cbbdfcfcca49ac5657a646

  • SHA512

    6502834a98d045c548e43cc30c78e4375e0aeaddd47706f172ddea4e06c6757e204500e7f992863e62036df55cb27f3427e5d66e30d7e19ce275506c7bce931a

  • SSDEEP

    196608:onG45fkN4b7cqKg4LK8VJFgDx8vfFe9WI+eAMrk1h:t4RkN4bAqtGtFYx6fU9WNe1g1h

Malware Config

Targets

    • Target

      2024-05-03_46a27c782b09f4a602730e8b1cad3627_bkransomware

    • Size

      7.3MB

    • MD5

      46a27c782b09f4a602730e8b1cad3627

    • SHA1

      10b7660cccc7e4a3fe105fb9b1cad49732834a0b

    • SHA256

      14791264a3918650fcb150c11e59e308dc1131eb08cbbdfcfcca49ac5657a646

    • SHA512

      6502834a98d045c548e43cc30c78e4375e0aeaddd47706f172ddea4e06c6757e204500e7f992863e62036df55cb27f3427e5d66e30d7e19ce275506c7bce931a

    • SSDEEP

      196608:onG45fkN4b7cqKg4LK8VJFgDx8vfFe9WI+eAMrk1h:t4RkN4bAqtGtFYx6fU9WNe1g1h

    • Detects executables containing URLs to raw contents of a Github gist

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks