Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-05...re.exe

windows7-x64

7

2024-05-05...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-05_a56d298dffcecc1bfa382ae03c276f20_bkransomware

  • Size

    214KB

  • Sample

    240505-jpdqpabf2x

  • MD5

    a56d298dffcecc1bfa382ae03c276f20

  • SHA1

    2b4c419ac497ad6f14e078693c050bbd07f14fe7

  • SHA256

    0e081fbcfcd3492c465941b61b3f2480d4a0a22365402c688adfd8839917009f

  • SHA512

    4cd1de16fba4bf028e107c973754e7be6585a067dda376f4a05e586aa74c068a13faf450c644dd25c613fce012227f2cabd742e433140041bca2f4a27b49f0c5

  • SSDEEP

    3072:ZhpAyazIlyazTh6sRQ4LsIDIs+3xq6GCTac6xPZwOQHMe8JGplPWYs:hZMazsR4XIs+3xqMQhw78JGpli

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-05-05_a56d298dffcecc1bfa382ae03c276f20_bkransomware

    • Size

      214KB

    • MD5

      a56d298dffcecc1bfa382ae03c276f20

    • SHA1

      2b4c419ac497ad6f14e078693c050bbd07f14fe7

    • SHA256

      0e081fbcfcd3492c465941b61b3f2480d4a0a22365402c688adfd8839917009f

    • SHA512

      4cd1de16fba4bf028e107c973754e7be6585a067dda376f4a05e586aa74c068a13faf450c644dd25c613fce012227f2cabd742e433140041bca2f4a27b49f0c5

    • SSDEEP

      3072:ZhpAyazIlyazTh6sRQ4LsIDIs+3xq6GCTac6xPZwOQHMe8JGplPWYs:hZMazsR4XIs+3xqMQhw78JGpli

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks