c1d5553113fb919ddcc5d368750ea75e71305174cc1b48f1d80a47e15e6436b2 | Triage

Sharing

General

Target

2024-04-27_896821e90f6bf918c326d86cf0ae2fba_bkransomware
Size

96KB
Sample

240427-ha9ddada86
MD5

896821e90f6bf918c326d86cf0ae2fba
SHA1

064dcb42eb27fc3d5a99bffdb02c7ff9956917e0
SHA256

c1d5553113fb919ddcc5d368750ea75e71305174cc1b48f1d80a47e15e6436b2
SHA512

c83f11b974784b2c15aced354ddd7a41afc927795bdbd496eba2f739e3c24eb5dc34b7d9084ca47db6ab4475bd11ab83bbb09eb1d5ce75ed9d1df27f278e1dc0
SSDEEP

1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTq0+oChNXic0Wmpnt9N8p/Om:ZhpAyazIlyazTIoChpicwt9N8Am

Score

7^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  2024-04-27_896821e90f6bf918c326d86cf0ae2fba_bkransomware
- Size
  
  96KB
- MD5
  
  896821e90f6bf918c326d86cf0ae2fba
- SHA1
  
  064dcb42eb27fc3d5a99bffdb02c7ff9956917e0
- SHA256
  
  c1d5553113fb919ddcc5d368750ea75e71305174cc1b48f1d80a47e15e6436b2
- SHA512
  
  c83f11b974784b2c15aced354ddd7a41afc927795bdbd496eba2f739e3c24eb5dc34b7d9084ca47db6ab4475bd11ab83bbb09eb1d5ce75ed9d1df27f278e1dc0
- SSDEEP
  
  1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTq0+oChNXic0Wmpnt9N8p/Om:ZhpAyazIlyazTIoChpicwt9N8Am
Score

7^/10

persistence spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2

persistencespywarestealer