Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-16_18b4398987e0429db323d0f3f41e4c61_bkransomware_karagany

  • Size

    677KB

  • Sample

    240616-qp5bzavdkh

  • MD5

    18b4398987e0429db323d0f3f41e4c61

  • SHA1

    6c2670a5785ef8ebf865328071ed4ea07f6471f0

  • SHA256

    1f1f03010a879eda414348d0f439fcce094f76a51464c8db22ca8b222033d5f1

  • SHA512

    dfa5e8ebaf40b6aa4c1f8daccb533d0c285a6eab4e0563481b46ac539407d5130abfab2c247915d6f4031cdeebf2efa78a0f294aa759d6cb8a7a6e28ecc3d514

  • SSDEEP

    12288:ivXk1qYlc+pFByStv9JRa//inz86NRo1qiRlUWC4kXzVC3:Ok1Xc+pFB5z+//ufNRoZW

Score
7/10

Malware Config

Targets

    • Target

      2024-06-16_18b4398987e0429db323d0f3f41e4c61_bkransomware_karagany

    • Size

      677KB

    • MD5

      18b4398987e0429db323d0f3f41e4c61

    • SHA1

      6c2670a5785ef8ebf865328071ed4ea07f6471f0

    • SHA256

      1f1f03010a879eda414348d0f439fcce094f76a51464c8db22ca8b222033d5f1

    • SHA512

      dfa5e8ebaf40b6aa4c1f8daccb533d0c285a6eab4e0563481b46ac539407d5130abfab2c247915d6f4031cdeebf2efa78a0f294aa759d6cb8a7a6e28ecc3d514

    • SSDEEP

      12288:ivXk1qYlc+pFByStv9JRa//inz86NRo1qiRlUWC4kXzVC3:Ok1Xc+pFB5z+//ufNRoZW

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks