Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-06-28_ca67324f74fd9598267e995779dacf28_bkransomware

  • Size

    71KB

  • Sample

    240628-2c9lpsterf

  • MD5

    ca67324f74fd9598267e995779dacf28

  • SHA1

    0d2a8aad15de4ad9348d600b0f5587beabf6edee

  • SHA256

    824b105f9759660673334a4972aafa5c1da141972cebbb2eba1d543737a984c3

  • SHA512

    a0d72fec04254b577e322c4d6c0ea2bc22452270d24bfd104052387f7007de827046d660e25d9e47e761e49954fc60c6cc1dc6e6cc844ad0306aa26932995a34

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazT0:ZhpAyazIlyazT0

Malware Config

Targets

    • Target

      2024-06-28_ca67324f74fd9598267e995779dacf28_bkransomware

    • Size

      71KB

    • MD5

      ca67324f74fd9598267e995779dacf28

    • SHA1

      0d2a8aad15de4ad9348d600b0f5587beabf6edee

    • SHA256

      824b105f9759660673334a4972aafa5c1da141972cebbb2eba1d543737a984c3

    • SHA512

      a0d72fec04254b577e322c4d6c0ea2bc22452270d24bfd104052387f7007de827046d660e25d9e47e761e49954fc60c6cc1dc6e6cc844ad0306aa26932995a34

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazT0:ZhpAyazIlyazT0

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks