Overview

overview

7

Static

static

3

2024-04-28...re.exe

windows7-x64

7

2024-04-28...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_f77be625c26c9767ff680f394c7f5179_bkransomware

  • Size

    1.6MB

  • Sample

    240428-zt1zsahd8y

  • MD5

    f77be625c26c9767ff680f394c7f5179

  • SHA1

    aaebcb3a4a419130f91f467ecf9b76fb296cf551

  • SHA256

    b6455b7ddbdb6f5d74b898e89225267a8ea42406bd45ae14ddc7f56103b8b685

  • SHA512

    8842897d70a95343b0caf1554a6432f6796fe55afd5be126fbe1485498f0958e7e37a55e2e33d08e2c1c1356a6cf6681499e9289295acb8ae4b22c350021d1da

  • SSDEEP

    24576:l6Bx8NDFKYmKOF0zr31JwAlcR3QC0OXxc0H:wBxgDUYmvFur31yAipQCtXxc0H

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-28_f77be625c26c9767ff680f394c7f5179_bkransomware

    • Size

      1.6MB

    • MD5

      f77be625c26c9767ff680f394c7f5179

    • SHA1

      aaebcb3a4a419130f91f467ecf9b76fb296cf551

    • SHA256

      b6455b7ddbdb6f5d74b898e89225267a8ea42406bd45ae14ddc7f56103b8b685

    • SHA512

      8842897d70a95343b0caf1554a6432f6796fe55afd5be126fbe1485498f0958e7e37a55e2e33d08e2c1c1356a6cf6681499e9289295acb8ae4b22c350021d1da

    • SSDEEP

      24576:l6Bx8NDFKYmKOF0zr31JwAlcR3QC0OXxc0H:wBxgDUYmvFur31yAipQCtXxc0H

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

System Information Discovery

3
T1082

Query Registry

3
T1012

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks