88820c013fe88ea3af45e509538a5fea77a8bb3418181f7368ef7866f114fbea | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-04-28...ny.exe

windows7-x64

7

2024-04-28...ny.exe

windows10-2004-x64

7

Sharing

General

Target

2024-04-28_35720c4e43381beffe753fe1dcac9257_bkransomware_karagany
Size

677KB
Sample

240428-mzgrwaec7w
MD5

35720c4e43381beffe753fe1dcac9257
SHA1

3cfa10e08588beae40fc653acea8599b7675ced6
SHA256

88820c013fe88ea3af45e509538a5fea77a8bb3418181f7368ef7866f114fbea
SHA512

7361a227f22062046f30bd287c97be6beffa90d0f7f7d2507cc14d9162134521c1a3813ded217e7e5bc5588441b588874b344057c98d4fbdf47c49c0b4436497
SSDEEP

12288:qvXk1JravfgGchah+H/cXy5YFSRNEaNZ2ONbQo2bzTWSaVVQtGLfHtVclBq+07:mk1haHsK+fM2jEaNZBqoeW7V6tGLfHt9

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-04-28_35720c4e43381beffe753fe1dcac9257_bkransomware_karagany.exe

Resource

win7-20240220-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-28_35720c4e43381beffe753fe1dcac9257_bkransomware_karagany.exe

Resource

win10v2004-20240419-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-28_35720c4e43381beffe753fe1dcac9257_bkransomware_karagany
- Size
  
  677KB
- MD5
  
  35720c4e43381beffe753fe1dcac9257
- SHA1
  
  3cfa10e08588beae40fc653acea8599b7675ced6
- SHA256
  
  88820c013fe88ea3af45e509538a5fea77a8bb3418181f7368ef7866f114fbea
- SHA512
  
  7361a227f22062046f30bd287c97be6beffa90d0f7f7d2507cc14d9162134521c1a3813ded217e7e5bc5588441b588874b344057c98d4fbdf47c49c0b4436497
- SSDEEP
  
  12288:qvXk1JravfgGchah+H/cXy5YFSRNEaNZ2ONbQo2bzTWSaVVQtGLfHtVclBq+07:mk1haHsK+fM2jEaNZBqoeW7V6tGLfHt9
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy