Overview

overview

7

Static

static

3

2024-05-01...re.exe

windows7-x64

7

2024-05-01...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-01_431fc9b3822f983b4070bd4e56c5eaa7_bkransomware

  • Size

    626KB

  • Sample

    240501-tyt45sdd46

  • MD5

    431fc9b3822f983b4070bd4e56c5eaa7

  • SHA1

    df002887ded6ca6a387864b4f22ab7826dcd7c0b

  • SHA256

    c35cbfc1f2f8ea5368d549093e50906fcbc580be33de007e3cd3209469ef5b41

  • SHA512

    c9ff860d9868b9b92d13ef0c63f2e56c9fc1173c60a83359277039a40e4036063ebb2d5e3e3195a0ea06f0d26d8591f2215bd1d6933a38d72ee584acf34ad111

  • SSDEEP

    12288:hS0xdbxDhpUSnygvq2yGNXWvamim9sGRPkWsTisLSBlj8Lp7kAC4dD0n:D/bp4rL2/NmymB9DxkDTLKj8Wn

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-05-01_431fc9b3822f983b4070bd4e56c5eaa7_bkransomware

    • Size

      626KB

    • MD5

      431fc9b3822f983b4070bd4e56c5eaa7

    • SHA1

      df002887ded6ca6a387864b4f22ab7826dcd7c0b

    • SHA256

      c35cbfc1f2f8ea5368d549093e50906fcbc580be33de007e3cd3209469ef5b41

    • SHA512

      c9ff860d9868b9b92d13ef0c63f2e56c9fc1173c60a83359277039a40e4036063ebb2d5e3e3195a0ea06f0d26d8591f2215bd1d6933a38d72ee584acf34ad111

    • SSDEEP

      12288:hS0xdbxDhpUSnygvq2yGNXWvamim9sGRPkWsTisLSBlj8Lp7kAC4dD0n:D/bp4rL2/NmymB9DxkDTLKj8Wn

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks