Overview

overview

7

Static

static

3

2024-04-29...re.exe

windows7-x64

7

2024-04-29...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-29_4deb53a89cdb8cec3ac72f166804bc21_bkransomware

  • Size

    214KB

  • Sample

    240429-v5pcxagf8w

  • MD5

    4deb53a89cdb8cec3ac72f166804bc21

  • SHA1

    3b2e925d740555fa6cda290302a497a4fcc2333d

  • SHA256

    df2828bf439cc49cf1a05e52b710452c631fd20982349645ff18a54dde8700ec

  • SHA512

    e5a19576cde689b634a57637b29219a94fa38ddf8c9bc9f82b1d70a1ee60bc6ea7882338881e099d95f41e5a4516801c799cb179665dfbba518fa5c74f88f461

  • SSDEEP

    3072:ZhpAyazIlyazTeXd/XZwyD17GUGBBimudi1idmAIV1UO9jV2y9nDfj2:hZMazCt/XVRFWQ74cmAILpgy9f2

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-04-29_4deb53a89cdb8cec3ac72f166804bc21_bkransomware

    • Size

      214KB

    • MD5

      4deb53a89cdb8cec3ac72f166804bc21

    • SHA1

      3b2e925d740555fa6cda290302a497a4fcc2333d

    • SHA256

      df2828bf439cc49cf1a05e52b710452c631fd20982349645ff18a54dde8700ec

    • SHA512

      e5a19576cde689b634a57637b29219a94fa38ddf8c9bc9f82b1d70a1ee60bc6ea7882338881e099d95f41e5a4516801c799cb179665dfbba518fa5c74f88f461

    • SSDEEP

      3072:ZhpAyazIlyazTeXd/XZwyD17GUGBBimudi1idmAIV1UO9jV2y9nDfj2:hZMazCt/XVRFWQ74cmAILpgy9f2

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks