Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-27_21fa9baff8f2dc06bb7c7ceb7dd18f60_bkransomware

  • Size

    96KB

  • Sample

    240627-mfv56awemd

  • MD5

    21fa9baff8f2dc06bb7c7ceb7dd18f60

  • SHA1

    e6622a7b52832af654877705ce5a4dc36758c07e

  • SHA256

    77b29e4163f1b177d410a29eb82889bf26d7f25271c59ae08e930d8be62a7dce

  • SHA512

    c7833ab71a67a0cab28e14baf66b92f2c1c9b7f3c9865020731d1c270e91693b3b2255fcadef0a39a590eac72e18c340f6654f70f439a59cc83c6477d6b0d241

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTPiaPY2lwDxVXV:ZhpAyazIlyazTPioiHXV

Malware Config

Targets

    • Target

      2024-06-27_21fa9baff8f2dc06bb7c7ceb7dd18f60_bkransomware

    • Size

      96KB

    • MD5

      21fa9baff8f2dc06bb7c7ceb7dd18f60

    • SHA1

      e6622a7b52832af654877705ce5a4dc36758c07e

    • SHA256

      77b29e4163f1b177d410a29eb82889bf26d7f25271c59ae08e930d8be62a7dce

    • SHA512

      c7833ab71a67a0cab28e14baf66b92f2c1c9b7f3c9865020731d1c270e91693b3b2255fcadef0a39a590eac72e18c340f6654f70f439a59cc83c6477d6b0d241

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTPiaPY2lwDxVXV:ZhpAyazIlyazTPioiHXV

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks