Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-04_2c0f1cf3e17e31084bcef9a80896b871_bkransomware_karagany

  • Size

    677KB

  • Sample

    240504-my4j9abg31

  • MD5

    2c0f1cf3e17e31084bcef9a80896b871

  • SHA1

    dff4754c732ddefbfd3246826e49a299794bedb2

  • SHA256

    03e82ed87fa381afefea61c3b6472caeecb08c5ecc72c51000b10189945abfed

  • SHA512

    e75d4c02927131d1dfa32d035391b7e4b6597e738a1e2eaea171af4988fcb8e3e9753e001f7a7b5f1d89544343999f1470522f0b73c407d75ad8c36b33af2547

  • SSDEEP

    12288:OvXk1TJKQ1uBeAMlwesHU8wqy2VYCIbvpOBlU1RlgIDMCZgjtGlxHZ9/I:yk1Q1SwPHU8X31PfU17DhZy0lxHZ9/I

Score
7/10

Malware Config

Targets

    • Target

      2024-05-04_2c0f1cf3e17e31084bcef9a80896b871_bkransomware_karagany

    • Size

      677KB

    • MD5

      2c0f1cf3e17e31084bcef9a80896b871

    • SHA1

      dff4754c732ddefbfd3246826e49a299794bedb2

    • SHA256

      03e82ed87fa381afefea61c3b6472caeecb08c5ecc72c51000b10189945abfed

    • SHA512

      e75d4c02927131d1dfa32d035391b7e4b6597e738a1e2eaea171af4988fcb8e3e9753e001f7a7b5f1d89544343999f1470522f0b73c407d75ad8c36b33af2547

    • SSDEEP

      12288:OvXk1TJKQ1uBeAMlwesHU8wqy2VYCIbvpOBlU1RlgIDMCZgjtGlxHZ9/I:yk1Q1SwPHU8X31PfU17DhZy0lxHZ9/I

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks