42c8ec0b2aba0073b24ce2458dc892e5a64a41684a2c47abe3a9e4581a2fae86 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-05-16...re.exe

windows7-x64

7

2024-05-16...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-16_27a8322af7d455fc9fb734f8a79b5aa4_bkransomware
Size

1.8MB
Sample

240516-wfw7wsgd5z
MD5

27a8322af7d455fc9fb734f8a79b5aa4
SHA1

acef6d82ac1b87320847762d32743098560acd86
SHA256

42c8ec0b2aba0073b24ce2458dc892e5a64a41684a2c47abe3a9e4581a2fae86
SHA512

e431eaf74848a2269cf4e45b1f78bba3cf5c15ce2d3e3a77aac1dfabf8ed00f62cc82570d43b5e2650fe1571e3d748e96301e398eb801f932aabc8993b643066
SSDEEP

49152:8E19+ApwXk1QE1RzsEQPaxHNk+pFzz+/2fNR:B93wXmoKs+pFtFR

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-16_27a8322af7d455fc9fb734f8a79b5aa4_bkransomware.exe

Resource

win7-20240221-en

spyware stealer

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-16_27a8322af7d455fc9fb734f8a79b5aa4_bkransomware.exe

Resource

win10v2004-20240426-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-16_27a8322af7d455fc9fb734f8a79b5aa4_bkransomware
- Size
  
  1.8MB
- MD5
  
  27a8322af7d455fc9fb734f8a79b5aa4
- SHA1
  
  acef6d82ac1b87320847762d32743098560acd86
- SHA256
  
  42c8ec0b2aba0073b24ce2458dc892e5a64a41684a2c47abe3a9e4581a2fae86
- SHA512
  
  e431eaf74848a2269cf4e45b1f78bba3cf5c15ce2d3e3a77aac1dfabf8ed00f62cc82570d43b5e2650fe1571e3d748e96301e398eb801f932aabc8993b643066
- SSDEEP
  
  49152:8E19+ApwXk1QE1RzsEQPaxHNk+pFzz+/2fNR:B93wXmoKs+pFtFR
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy