Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-05-31_3c63c8e5b02975df9a1232dfab34fbf3_bkransomware

  • Size

    71KB

  • Sample

    240531-jzxljsca8s

  • MD5

    3c63c8e5b02975df9a1232dfab34fbf3

  • SHA1

    00edca3152b564b22142ae3e519d616515785a98

  • SHA256

    c7b8f3ec3c93e024caf57a48092501d6894c682d56bf1f59e4999013e0f30851

  • SHA512

    fdac20cdf9f59ac6a35ecf973310e52170cd0228f1bc47f2f0af518bf77220ac42bcf2b55a49d5101365eb506bbbf9b45d89ebbaa6ff2595f128c13ef6dd87d0

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT6:ZRpAyazIliazT6

Malware Config

Targets

    • Target

      2024-05-31_3c63c8e5b02975df9a1232dfab34fbf3_bkransomware

    • Size

      71KB

    • MD5

      3c63c8e5b02975df9a1232dfab34fbf3

    • SHA1

      00edca3152b564b22142ae3e519d616515785a98

    • SHA256

      c7b8f3ec3c93e024caf57a48092501d6894c682d56bf1f59e4999013e0f30851

    • SHA512

      fdac20cdf9f59ac6a35ecf973310e52170cd0228f1bc47f2f0af518bf77220ac42bcf2b55a49d5101365eb506bbbf9b45d89ebbaa6ff2595f128c13ef6dd87d0

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT6:ZRpAyazIliazT6

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks