Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-29_694389f5fe3d942957d3057cde4b3084_bkransomware

  • Size

    71KB

  • Sample

    240529-n4p5gsec36

  • MD5

    694389f5fe3d942957d3057cde4b3084

  • SHA1

    d3f5db605c9cfebd61b228cf5744fcc8f6cffd78

  • SHA256

    383e04cc53d06cdf31235cbce56c3b6f7ad8a3def771fd723ff9648db87d1adb

  • SHA512

    b41c11b453293b353d1b1113d62139b762bfc94520937ff58a130b88d1666e3adb61cdb5c4ecc893db430459c1c43f2a926147e4c3b1b921a6798f48d1706a46

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTS:ZhpAyazIlyazTS

Malware Config

Targets

    • Target

      2024-05-29_694389f5fe3d942957d3057cde4b3084_bkransomware

    • Size

      71KB

    • MD5

      694389f5fe3d942957d3057cde4b3084

    • SHA1

      d3f5db605c9cfebd61b228cf5744fcc8f6cffd78

    • SHA256

      383e04cc53d06cdf31235cbce56c3b6f7ad8a3def771fd723ff9648db87d1adb

    • SHA512

      b41c11b453293b353d1b1113d62139b762bfc94520937ff58a130b88d1666e3adb61cdb5c4ecc893db430459c1c43f2a926147e4c3b1b921a6798f48d1706a46

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTS:ZhpAyazIlyazTS

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks