Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-08_04b8127757b255a0ddd8c439136249e2_bkransomware

  • Size

    71KB

  • Sample

    240508-d9lddagh71

  • MD5

    04b8127757b255a0ddd8c439136249e2

  • SHA1

    f55213963df1a849291d52767a652148a6f07e0b

  • SHA256

    299169bc7a4687aa3fd1f1fbaa951b8a75229840ce61a06677234b5bda46817a

  • SHA512

    ac162a538746d479bf6e35e682ce2eb51ec57e529329ddf23ac4a67fbffd81f715d73c954577ccf480f1a1db14da84cd95999c6a0d8a31d1570d8131221db496

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT3m:ZRpAyazIliazT2

Malware Config

Targets

    • Target

      2024-05-08_04b8127757b255a0ddd8c439136249e2_bkransomware

    • Size

      71KB

    • MD5

      04b8127757b255a0ddd8c439136249e2

    • SHA1

      f55213963df1a849291d52767a652148a6f07e0b

    • SHA256

      299169bc7a4687aa3fd1f1fbaa951b8a75229840ce61a06677234b5bda46817a

    • SHA512

      ac162a538746d479bf6e35e682ce2eb51ec57e529329ddf23ac4a67fbffd81f715d73c954577ccf480f1a1db14da84cd95999c6a0d8a31d1570d8131221db496

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT3m:ZRpAyazIliazT2

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks