Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2024-05-12...re.exe

windows7-x64

7

2024-05-12...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-12_e1da8b45c05e167be26f893b66d25356_bkransomware

  • Size

    712KB

  • Sample

    240512-p3v5saae78

  • MD5

    e1da8b45c05e167be26f893b66d25356

  • SHA1

    b912ec3d33ffc73351fed30fca5d8a268e848d4f

  • SHA256

    31d77869d95211d1972c61e7e40bf31ec247a63e7cf649fda4dbff14cc42d836

  • SHA512

    b6134e62f7a2ff5b01c2b561e1d39e23763d2876b9e9dcc8e1de64d792c9b8b6f03b8ac1c3171fbf6cf0b57cb6319b18d98edbeaffe4fa1b60edcde7d956f48b

  • SSDEEP

    12288:YtOw6BaVJgeKznl5TXJR0j3p2pVUrrQuLoWTF23JVbd0UILzXSocmKdYNq6:m6BUJ7ozX0j52pMkuLoiSJVlIL29mhNL

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-12_e1da8b45c05e167be26f893b66d25356_bkransomware

    • Size

      712KB

    • MD5

      e1da8b45c05e167be26f893b66d25356

    • SHA1

      b912ec3d33ffc73351fed30fca5d8a268e848d4f

    • SHA256

      31d77869d95211d1972c61e7e40bf31ec247a63e7cf649fda4dbff14cc42d836

    • SHA512

      b6134e62f7a2ff5b01c2b561e1d39e23763d2876b9e9dcc8e1de64d792c9b8b6f03b8ac1c3171fbf6cf0b57cb6319b18d98edbeaffe4fa1b60edcde7d956f48b

    • SSDEEP

      12288:YtOw6BaVJgeKznl5TXJR0j3p2pVUrrQuLoWTF23JVbd0UILzXSocmKdYNq6:m6BUJ7ozX0j52pMkuLoiSJVlIL29mhNL

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks