Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-27_708a5aec0661c6793f073d7db64d2a39_bkransomware

  • Size

    4.8MB

  • Sample

    240627-gqhd6ayarn

  • MD5

    708a5aec0661c6793f073d7db64d2a39

  • SHA1

    df5b44552f89adfe9f81388e5e60dd35e79e0225

  • SHA256

    fe2080fe65ce965a5b0e382849a65d50df43afca175c921d569002895e535c97

  • SHA512

    07ac56e3480b52673ca595184a40f16f97fcd5c8cb36a2172243d738bbb88f171c6ac1a1f1a622932d9679a179008e9443c1331010be4b9c7221a02fddd6e880

  • SSDEEP

    98304:SDqPpWhmvNqvs/H7WVVish/Rm9cKvWgDE62kB:SDqMvJVjoOgDE62Y

Malware Config

Targets

    • Target

      2024-06-27_708a5aec0661c6793f073d7db64d2a39_bkransomware

    • Size

      4.8MB

    • MD5

      708a5aec0661c6793f073d7db64d2a39

    • SHA1

      df5b44552f89adfe9f81388e5e60dd35e79e0225

    • SHA256

      fe2080fe65ce965a5b0e382849a65d50df43afca175c921d569002895e535c97

    • SHA512

      07ac56e3480b52673ca595184a40f16f97fcd5c8cb36a2172243d738bbb88f171c6ac1a1f1a622932d9679a179008e9443c1331010be4b9c7221a02fddd6e880

    • SSDEEP

      98304:SDqPpWhmvNqvs/H7WVVish/Rm9cKvWgDE62kB:SDqMvJVjoOgDE62Y

    • Sets service image path in registry

    • Impair Defenses: Safe Mode Boot

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks