General
-
Target
2024-04-28_31399e198b2142c8720172842e3af5b8_bkransomware
-
Size
2.2MB
-
Sample
240428-f4ysmaha43
-
MD5
31399e198b2142c8720172842e3af5b8
-
SHA1
84e8a94e6b4595bc72b213b0fcb28f5675186118
-
SHA256
4fd90ae17a33d64776141defd5f10af0d7a20af1ab087e179b6447120f786460
-
SHA512
99298abd14eafd1c546108976bf21276401ba37d7e95f8ba035f496b1be9104d597358ed18d0ea57bd7db392265a7ef13642c4a1b8f7264a5ceceb3ed500e337
-
SSDEEP
49152:DJKRJh28dl5VzMrSzR3zibwbCTYehyLDvarb3:DJabl5TzRjiZTci
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-28_31399e198b2142c8720172842e3af5b8_bkransomware.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-28_31399e198b2142c8720172842e3af5b8_bkransomware.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-28_31399e198b2142c8720172842e3af5b8_bkransomware
-
Size
2.2MB
-
MD5
31399e198b2142c8720172842e3af5b8
-
SHA1
84e8a94e6b4595bc72b213b0fcb28f5675186118
-
SHA256
4fd90ae17a33d64776141defd5f10af0d7a20af1ab087e179b6447120f786460
-
SHA512
99298abd14eafd1c546108976bf21276401ba37d7e95f8ba035f496b1be9104d597358ed18d0ea57bd7db392265a7ef13642c4a1b8f7264a5ceceb3ed500e337
-
SSDEEP
49152:DJKRJh28dl5VzMrSzR3zibwbCTYehyLDvarb3:DJabl5TzRjiZTci
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks system information in the registry
System information is often read in order to detect sandboxing environments.
-