Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2024-10-25_e1747df2ffcb98806e23fc658f2da67a_bkransomware

  • Size

    1.8MB

  • Sample

    241025-2nntdatjdj

  • MD5

    e1747df2ffcb98806e23fc658f2da67a

  • SHA1

    3a4db9210e9c79480dad019b84740f13e599cff7

  • SHA256

    7e1dbb91b784148cf977e137f5fce08d806e7b8fbe223413f9ebd5e4cff35497

  • SHA512

    12560743e9591b3ff5e53be2ccf44882b5aae81787ee66f6e0e89b011fa904edfd40752b24e41cc8f551bd33f4e9220a8e0bd5ef676fd964de5914e56aef6133

  • SSDEEP

    49152:JEy9+ApwXk1QE1RzsEQPaxHNLErvL73RLSo+2fhl:R93wXmoKArvvRe12fD

Malware Config

Targets

    • Target

      2024-10-25_e1747df2ffcb98806e23fc658f2da67a_bkransomware

    • Size

      1.8MB

    • MD5

      e1747df2ffcb98806e23fc658f2da67a

    • SHA1

      3a4db9210e9c79480dad019b84740f13e599cff7

    • SHA256

      7e1dbb91b784148cf977e137f5fce08d806e7b8fbe223413f9ebd5e4cff35497

    • SHA512

      12560743e9591b3ff5e53be2ccf44882b5aae81787ee66f6e0e89b011fa904edfd40752b24e41cc8f551bd33f4e9220a8e0bd5ef676fd964de5914e56aef6133

    • SSDEEP

      49152:JEy9+ApwXk1QE1RzsEQPaxHNLErvL73RLSo+2fhl:R93wXmoKArvvRe12fD

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks