Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-04_793c19d1b1924506d07f20a7f5221d9b_bkransomware

  • Size

    71KB

  • Sample

    240504-cx69msea29

  • MD5

    793c19d1b1924506d07f20a7f5221d9b

  • SHA1

    a40b74ddac18599e3fbe01abee0d4439e24c6dd4

  • SHA256

    9dba025eae42a0332374d1f2e6c28dd3db6140ee2e30eacb1f45c1e6952d6b5e

  • SHA512

    2d934cc17375d4da37ed4ce11e69420b0eaf34598ce20cb879836468f736eae392a6ec9b112a3bbb3a6c8594e85484cc8c2958a8306528912d1f3f84f5260b2e

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTu:ZhpAyazIlyazTu

Malware Config

Targets

    • Target

      2024-05-04_793c19d1b1924506d07f20a7f5221d9b_bkransomware

    • Size

      71KB

    • MD5

      793c19d1b1924506d07f20a7f5221d9b

    • SHA1

      a40b74ddac18599e3fbe01abee0d4439e24c6dd4

    • SHA256

      9dba025eae42a0332374d1f2e6c28dd3db6140ee2e30eacb1f45c1e6952d6b5e

    • SHA512

      2d934cc17375d4da37ed4ce11e69420b0eaf34598ce20cb879836468f736eae392a6ec9b112a3bbb3a6c8594e85484cc8c2958a8306528912d1f3f84f5260b2e

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTu:ZhpAyazIlyazTu

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks