General
-
Target
2024-04-28_c5a9fa2474887be17c328652b3d30c58_bkransomware
-
Size
214KB
-
Sample
240428-mbx4ysdd88
-
MD5
c5a9fa2474887be17c328652b3d30c58
-
SHA1
82445294c29a3d0befeb9152f045b6a29f2faa99
-
SHA256
1abd9bd62e477f870455e328184177daa4f635c49b4054fd0b2bb55cb5b7ba68
-
SHA512
b8f37be0cbb58daa3e86ec68b865a068b656c8e2ff637bf3cd26d672dd3f63524843648514edd66faa3ee7393870694e75efa285a8303583cca41c5a5d5c52e4
-
SSDEEP
6144:hZMazPbXIiwHzzwSZwwSG5hV7pzLP3NPh1QbMW:hS0PczzwS665rVvNJ1u
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-28_c5a9fa2474887be17c328652b3d30c58_bkransomware.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-28_c5a9fa2474887be17c328652b3d30c58_bkransomware.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-28_c5a9fa2474887be17c328652b3d30c58_bkransomware
-
Size
214KB
-
MD5
c5a9fa2474887be17c328652b3d30c58
-
SHA1
82445294c29a3d0befeb9152f045b6a29f2faa99
-
SHA256
1abd9bd62e477f870455e328184177daa4f635c49b4054fd0b2bb55cb5b7ba68
-
SHA512
b8f37be0cbb58daa3e86ec68b865a068b656c8e2ff637bf3cd26d672dd3f63524843648514edd66faa3ee7393870694e75efa285a8303583cca41c5a5d5c52e4
-
SSDEEP
6144:hZMazPbXIiwHzzwSZwwSG5hV7pzLP3NPh1QbMW:hS0PczzwS665rVvNJ1u
Score9/10-
Detects executables containing bas64 encoded gzip files
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-