Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-08-10_eccf41768b9a1768abd3b254084523a3_bkransomware_karagany

  • Size

    677KB

  • Sample

    240810-b1992azdmm

  • MD5

    eccf41768b9a1768abd3b254084523a3

  • SHA1

    ab5444c993452ac3daa3f9a987b137c862d477c5

  • SHA256

    6cdd2124fd10c88c200a2c6ab801345bebf033e7c2e70f90d420b83307aaf524

  • SHA512

    d51b52efcda9c69288f3bb70c0849731073d1cfed4e7f8751db601406a040f0f71e53d766adbcdb2929e3d767077bee3ab269ecc166bb0641524a2e0e8f2e887

  • SSDEEP

    12288:HvXk1I8LKdnq1xmZw8UIftWcaoNntnPTEYHYab+ehBjukSeyTy7:/k17OdSv8Ucaod1Po6YK92y

Malware Config

Targets

    • Target

      2024-08-10_eccf41768b9a1768abd3b254084523a3_bkransomware_karagany

    • Size

      677KB

    • MD5

      eccf41768b9a1768abd3b254084523a3

    • SHA1

      ab5444c993452ac3daa3f9a987b137c862d477c5

    • SHA256

      6cdd2124fd10c88c200a2c6ab801345bebf033e7c2e70f90d420b83307aaf524

    • SHA512

      d51b52efcda9c69288f3bb70c0849731073d1cfed4e7f8751db601406a040f0f71e53d766adbcdb2929e3d767077bee3ab269ecc166bb0641524a2e0e8f2e887

    • SSDEEP

      12288:HvXk1I8LKdnq1xmZw8UIftWcaoNntnPTEYHYab+ehBjukSeyTy7:/k17OdSv8Ucaod1Po6YK92y

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks