7c1ec747a4695ac30f19e5850d78396c69bcf4ee2d005b05f05184a7fb496a51

Analysis

max time kernel
120s
max time network
121s
platform
windows7_x64
resource
win7-20231129-en
resource tags

arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
submitted
14/05/2024, 12:50

Target

2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe
Size

3.7MB
MD5

e839721f3b5145a8acf527470c895c0c
SHA1

a875fe18a0b8c9794193f706371f7dba487454aa
SHA256

7c1ec747a4695ac30f19e5850d78396c69bcf4ee2d005b05f05184a7fb496a51
SHA512

153306fd733808e96b562854608e2e6f3d9a027b991416c371f3ef2596fa182cda96287fa64ebeab4744cf700ef839420aa385a1ea239b0c65a71dc947323da7
SSDEEP

98304:xhHjeUJF3noxDIqnstLE4L9IW1dXg3S/MHmgH:HH732EqnhD

Score

1^/10

Modifies registry class 5 IoCs

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000_CLASSES\Applications\crashreporter.exe\IsHostApp = "0"	2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000_CLASSES\Applications\crashreporter.exe\NoOpenWith = "0"	2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000_CLASSES\Applications\crashreporter.exe\NoStartPage = "0"	2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000_CLASSES\Applications	2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe
Key created	\REGISTRY\USER\S-1-5-21-3627615824-4061627003-3019543961-1000_CLASSES\Applications\crashreporter.exe	2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe

C:\Users\Admin\AppData\Local\Temp\2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe
"C:\Users\Admin\AppData\Local\Temp\2024-05-14_e839721f3b5145a8acf527470c895c0c_bkransomware.exe"
1⤵
- Modifies registry class
PID:2220