Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-08-12_d45a04e3a668ee764756a83eaddf81e7_bkransomware

  • Size

    712KB

  • Sample

    240812-ptzrlsvhpb

  • MD5

    d45a04e3a668ee764756a83eaddf81e7

  • SHA1

    5149c929bfdcd280796412ac13f9275471f2498f

  • SHA256

    f7094142e8b382d2f338b6c87ef3e67937d611d8715a089bf4937009e861ffbf

  • SHA512

    f7cf09bfe6e8dc03943e846adf16fd01affd974106ac5e2386658bab84ac16ca6c0e443b924bdf195b2d4b9c8a4842cdd9a2a6cb8777345a18b8d5fc66f5e376

  • SSDEEP

    12288:atOw6BatCoH/uLJOyo937vGFWxwFJI+yeuVb8r+ZP712Ii+51cjVWtVj5J:06B42JOt934J7Z6bQaj1BvUm9J

Malware Config

Targets

    • Target

      2024-08-12_d45a04e3a668ee764756a83eaddf81e7_bkransomware

    • Size

      712KB

    • MD5

      d45a04e3a668ee764756a83eaddf81e7

    • SHA1

      5149c929bfdcd280796412ac13f9275471f2498f

    • SHA256

      f7094142e8b382d2f338b6c87ef3e67937d611d8715a089bf4937009e861ffbf

    • SHA512

      f7cf09bfe6e8dc03943e846adf16fd01affd974106ac5e2386658bab84ac16ca6c0e443b924bdf195b2d4b9c8a4842cdd9a2a6cb8777345a18b8d5fc66f5e376

    • SSDEEP

      12288:atOw6BatCoH/uLJOyo937vGFWxwFJI+yeuVb8r+ZP712Ii+51cjVWtVj5J:06B42JOt934J7Z6bQaj1BvUm9J

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks