General
-
Target
2024-04-27_d74b38a8ebcdef1d3f406e7abe66ee9f_bkransomware
-
Size
18.3MB
-
Sample
240427-1v8axshg41
-
MD5
d74b38a8ebcdef1d3f406e7abe66ee9f
-
SHA1
4b9ead52a29d5d9d7e06b0fc0f0622653415adb0
-
SHA256
ebe3751f8484f7b23dc8e179c5ea77429bc899fcc9b429c2f5c62eec37c0b42e
-
SHA512
abb935d77dda02e73cc2c913025e108f50af7c2729b24341c5b1218930ad8aefef12c5ca94ac3020a862460e0450ffe5c517e76afff0a8a7f22bc58763fa44f9
-
SSDEEP
393216:a8k32KphDG3wzfZbGd3ST6NM5yi7nj0wy8JogtBR0C/3Cix3VWtlG+9:axlpVBbZad26NLwnxJZt304yiBgtoy
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-27_d74b38a8ebcdef1d3f406e7abe66ee9f_bkransomware.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-04-27_d74b38a8ebcdef1d3f406e7abe66ee9f_bkransomware.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-27_d74b38a8ebcdef1d3f406e7abe66ee9f_bkransomware
-
Size
18.3MB
-
MD5
d74b38a8ebcdef1d3f406e7abe66ee9f
-
SHA1
4b9ead52a29d5d9d7e06b0fc0f0622653415adb0
-
SHA256
ebe3751f8484f7b23dc8e179c5ea77429bc899fcc9b429c2f5c62eec37c0b42e
-
SHA512
abb935d77dda02e73cc2c913025e108f50af7c2729b24341c5b1218930ad8aefef12c5ca94ac3020a862460e0450ffe5c517e76afff0a8a7f22bc58763fa44f9
-
SSDEEP
393216:a8k32KphDG3wzfZbGd3ST6NM5yi7nj0wy8JogtBR0C/3Cix3VWtlG+9:axlpVBbZad26NLwnxJZt304yiBgtoy
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks system information in the registry
System information is often read in order to detect sandboxing environments.
-