Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-28_d6ed41a105a77941c0c36054fbb506ad_bkransomware_karagany

  • Size

    677KB

  • Sample

    240528-yl61dshh31

  • MD5

    d6ed41a105a77941c0c36054fbb506ad

  • SHA1

    934f74a725afa9f174397e97677a256bfa3583f7

  • SHA256

    f901107bfa65ce0b92b46f81117b7ac1264e93a2d76badeabce9129f1afc7e37

  • SHA512

    1d697ef628c2b422a044a24cee3aa8f53b713bbbbcf6e1dd86f9b339c6f6a62a18d26c7858ddfe2b0816d40d2a55040c28627a6ed7b1dc391a0dad6e790b728c

  • SSDEEP

    12288:svXk1J6JvY67VMBNO/aXpXI22+VufvdIOKek1h4TA8bXQJYe:Ik1J6J17W8CX32+KJNA80T

Score
7/10

Malware Config

Targets

    • Target

      2024-05-28_d6ed41a105a77941c0c36054fbb506ad_bkransomware_karagany

    • Size

      677KB

    • MD5

      d6ed41a105a77941c0c36054fbb506ad

    • SHA1

      934f74a725afa9f174397e97677a256bfa3583f7

    • SHA256

      f901107bfa65ce0b92b46f81117b7ac1264e93a2d76badeabce9129f1afc7e37

    • SHA512

      1d697ef628c2b422a044a24cee3aa8f53b713bbbbcf6e1dd86f9b339c6f6a62a18d26c7858ddfe2b0816d40d2a55040c28627a6ed7b1dc391a0dad6e790b728c

    • SSDEEP

      12288:svXk1J6JvY67VMBNO/aXpXI22+VufvdIOKek1h4TA8bXQJYe:Ik1J6J17W8CX32+KJNA80T

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks