ae765c77668b8037c67af0192a347874f96a2d251167239bcd75c70594cc61b5 | Triage

Sharing

General

Target

2024-05-01_6c7504c5626db4dd99f7a410ed3ce3e9_bkransomware
Size

247KB
Sample

240501-rrslmaba49
MD5

6c7504c5626db4dd99f7a410ed3ce3e9
SHA1

664684d8f064e99a2fa453f745f886e2271f3627
SHA256

ae765c77668b8037c67af0192a347874f96a2d251167239bcd75c70594cc61b5
SHA512

b57f73ae41ded3367a716ebe89c70644d240d0e30c4de15a4f99ed04f1420a3eca75e1a45373d6323119f6d12c3ee471cbff40676aa72465ae6cda8cf3cc9646
SSDEEP

3072:ZRpAyazIliazTZ/7OEcMpySU7sGRHuhfuVPjlCM/v0iyiZFXp/HAq2wht2r2lqJ:xZ8aztaEcMSBM5uVv0ViZFX9gC2ilo

Score

7^/10

persistence spyware stealer

Malware Config

Targets

- Target
  
  2024-05-01_6c7504c5626db4dd99f7a410ed3ce3e9_bkransomware
- Size
  
  247KB
- MD5
  
  6c7504c5626db4dd99f7a410ed3ce3e9
- SHA1
  
  664684d8f064e99a2fa453f745f886e2271f3627
- SHA256
  
  ae765c77668b8037c67af0192a347874f96a2d251167239bcd75c70594cc61b5
- SHA512
  
  b57f73ae41ded3367a716ebe89c70644d240d0e30c4de15a4f99ed04f1420a3eca75e1a45373d6323119f6d12c3ee471cbff40676aa72465ae6cda8cf3cc9646
- SSDEEP
  
  3072:ZRpAyazIliazTZ/7OEcMpySU7sGRHuhfuVPjlCM/v0iyiZFXp/HAq2wht2r2lqJ:xZ8aztaEcMSBM5uVv0ViZFX9gC2ilo
Score

7^/10

persistence spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2

persistencespywarestealer