Overview

overview

7

Static

static

3

2024-04-29...re.exe

windows7-x64

7

2024-04-29...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-29_424dd3bc4897e581897af8345845f06b_bkransomware

  • Size

    96KB

  • Sample

    240429-fgh4naag99

  • MD5

    424dd3bc4897e581897af8345845f06b

  • SHA1

    297debb68207163b359e6f0c0ff58133ad3b5adb

  • SHA256

    45f5fb09b2bb63520849e5e8547753fff2f3bc35a64b004ce7e4acf860c16fb1

  • SHA512

    93be5198b6594219373112fce088bdddd73c7eb71e057c5e2aebe79dd560a8869e114b54649c557315f90fb3f2cf993effd1ad21e632f85509d29d25993fe8d8

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazT6/J93SRHgQvUm7UJNp5g:ZhpAyazIlyazT6R93OHpUmkJg

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-04-29_424dd3bc4897e581897af8345845f06b_bkransomware

    • Size

      96KB

    • MD5

      424dd3bc4897e581897af8345845f06b

    • SHA1

      297debb68207163b359e6f0c0ff58133ad3b5adb

    • SHA256

      45f5fb09b2bb63520849e5e8547753fff2f3bc35a64b004ce7e4acf860c16fb1

    • SHA512

      93be5198b6594219373112fce088bdddd73c7eb71e057c5e2aebe79dd560a8869e114b54649c557315f90fb3f2cf993effd1ad21e632f85509d29d25993fe8d8

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazT6/J93SRHgQvUm7UJNp5g:ZhpAyazIlyazT6R93OHpUmkJg

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks