Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-07-04_47604d39b4af645d5933728d075861c8_bkransomware

  • Size

    76KB

  • Sample

    240704-xhz71atbnq

  • MD5

    47604d39b4af645d5933728d075861c8

  • SHA1

    17c09b3500572e7c6b7ef37c77b1745608d9ecee

  • SHA256

    a4fb338f9b0835ee7f43ddf1aa6a5687119a4cb3a70a41828998de7d5c23c659

  • SHA512

    7da6d391c50b8fad42a58a5289b9775a0be004b8be8711e8dbc46d493fda318d672acabe77fe1f7bbfbbf693d3e7a785e1ffdf4ebb3f0976bdda1bcb0cdde44c

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTCxFz:ZRpAyazIliazTCTz

Malware Config

Targets

    • Target

      2024-07-04_47604d39b4af645d5933728d075861c8_bkransomware

    • Size

      76KB

    • MD5

      47604d39b4af645d5933728d075861c8

    • SHA1

      17c09b3500572e7c6b7ef37c77b1745608d9ecee

    • SHA256

      a4fb338f9b0835ee7f43ddf1aa6a5687119a4cb3a70a41828998de7d5c23c659

    • SHA512

      7da6d391c50b8fad42a58a5289b9775a0be004b8be8711e8dbc46d493fda318d672acabe77fe1f7bbfbbf693d3e7a785e1ffdf4ebb3f0976bdda1bcb0cdde44c

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTCxFz:ZRpAyazIliazTCTz

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks