Overview

overview

7

Static

static

3

2024-04-29...re.exe

windows7-x64

7

2024-04-29...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-29_b90a2865a197eb98a9dabbdbe29d2bdf_bkransomware

  • Size

    214KB

  • Sample

    240429-zpg14sbh83

  • MD5

    b90a2865a197eb98a9dabbdbe29d2bdf

  • SHA1

    810895f70895a48d808359ec41d9d0f470588654

  • SHA256

    0384aad109a4caf974c2745565aad6079f7e2731efce13adf92da4f488debe69

  • SHA512

    dd91d2f0d8887fe8d98fcdc86536de01182edfb36a96ee73a28cb8bac3e255f8de234b491cb981273a2c87e6c675f79d18380912674476932930e1a0ef326d16

  • SSDEEP

    3072:ZhpAyazIlyazTzPwqLVvWU2S3n4gfuO1ATO0G41Y3kJ1Mew2zQ6t2SY:hZMazzODsuOiBz1YUTRwyQq/Y

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-04-29_b90a2865a197eb98a9dabbdbe29d2bdf_bkransomware

    • Size

      214KB

    • MD5

      b90a2865a197eb98a9dabbdbe29d2bdf

    • SHA1

      810895f70895a48d808359ec41d9d0f470588654

    • SHA256

      0384aad109a4caf974c2745565aad6079f7e2731efce13adf92da4f488debe69

    • SHA512

      dd91d2f0d8887fe8d98fcdc86536de01182edfb36a96ee73a28cb8bac3e255f8de234b491cb981273a2c87e6c675f79d18380912674476932930e1a0ef326d16

    • SSDEEP

      3072:ZhpAyazIlyazTzPwqLVvWU2S3n4gfuO1ATO0G41Y3kJ1Mew2zQ6t2SY:hZMazzODsuOiBz1YUTRwyQq/Y

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks