Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-04_44976294bb1b928a214c8e4b8e6decfe_bkransomware

  • Size

    71KB

  • Sample

    240604-vzvbzadh7x

  • MD5

    44976294bb1b928a214c8e4b8e6decfe

  • SHA1

    eed0563267e21fe98c0a2d3700acc7c3e3bb162b

  • SHA256

    c633fecb35c492dc22642a00d4aab8a003be084197cbb7e669613dc5d15df489

  • SHA512

    bb468ba2e0b3ce574fb4997d860b33c495aa61152bd03bd240a6c0354d83a7ab3094ab0923180538414e47f44bd75d56a8e38cb25d72c0bda37eae6cd4810863

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTa:ZRpAyazIliazTa

Malware Config

Targets

    • Target

      2024-06-04_44976294bb1b928a214c8e4b8e6decfe_bkransomware

    • Size

      71KB

    • MD5

      44976294bb1b928a214c8e4b8e6decfe

    • SHA1

      eed0563267e21fe98c0a2d3700acc7c3e3bb162b

    • SHA256

      c633fecb35c492dc22642a00d4aab8a003be084197cbb7e669613dc5d15df489

    • SHA512

      bb468ba2e0b3ce574fb4997d860b33c495aa61152bd03bd240a6c0354d83a7ab3094ab0923180538414e47f44bd75d56a8e38cb25d72c0bda37eae6cd4810863

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTa:ZRpAyazIliazTa

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks