Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-12_b9cbf396b5b2bec35c8c263ce308347b_bkransomware

  • Size

    96KB

  • Sample

    240512-lkxdcahh7v

  • MD5

    b9cbf396b5b2bec35c8c263ce308347b

  • SHA1

    feb97af72f1fe5266c7c898c21723cb16bf07d07

  • SHA256

    4ff9ec4f05c9f69abd24e4a262fd47575b45f329cadf69295bc1a22a11cebfb2

  • SHA512

    ac1fb80dc4b69e646277f334bec83102d3b978422d57f52d35d037830e0a0e8ca93d7285c9fe722afcc5d555faafadad718c43f847bc28d99252b7d1a62e0627

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT8vGjQ8/KAFFhj9C4D6:ZRpAyazIliazTwGj3KA3hjLe

Malware Config

Targets

    • Target

      2024-05-12_b9cbf396b5b2bec35c8c263ce308347b_bkransomware

    • Size

      96KB

    • MD5

      b9cbf396b5b2bec35c8c263ce308347b

    • SHA1

      feb97af72f1fe5266c7c898c21723cb16bf07d07

    • SHA256

      4ff9ec4f05c9f69abd24e4a262fd47575b45f329cadf69295bc1a22a11cebfb2

    • SHA512

      ac1fb80dc4b69e646277f334bec83102d3b978422d57f52d35d037830e0a0e8ca93d7285c9fe722afcc5d555faafadad718c43f847bc28d99252b7d1a62e0627

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT8vGjQ8/KAFFhj9C4D6:ZRpAyazIliazTwGj3KA3hjLe

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks