Overview

overview

7

Static

static

3

2024-05-16...re.exe

windows7-x64

7

2024-05-16...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-16_e014ab8eff1e16df64b8dff902bdd9ad_bkransomware

  • Size

    96KB

  • Sample

    240516-yxwnssed2x

  • MD5

    e014ab8eff1e16df64b8dff902bdd9ad

  • SHA1

    d2bc1ae2aed3559a16af63a2ee6b52aaba521e85

  • SHA256

    379bd45aae694d7ede6a86ce47418d8a9e0064f0abbbe3035151150e3da25623

  • SHA512

    003fa91cf6fa7edaa028a6785ee464dc81c707506b5bea9873646c6f42f42f9cebc8451fe860e81e84017c07e16552a61c4ebb6f525f8933797f74c11a952fdd

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTsYG5psUl1zlJ2p608s7:ZRpAyazIliazTHGfnbzlJ2Y0D7

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-05-16_e014ab8eff1e16df64b8dff902bdd9ad_bkransomware

    • Size

      96KB

    • MD5

      e014ab8eff1e16df64b8dff902bdd9ad

    • SHA1

      d2bc1ae2aed3559a16af63a2ee6b52aaba521e85

    • SHA256

      379bd45aae694d7ede6a86ce47418d8a9e0064f0abbbe3035151150e3da25623

    • SHA512

      003fa91cf6fa7edaa028a6785ee464dc81c707506b5bea9873646c6f42f42f9cebc8451fe860e81e84017c07e16552a61c4ebb6f525f8933797f74c11a952fdd

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTsYG5psUl1zlJ2p608s7:ZRpAyazIliazTHGfnbzlJ2Y0D7

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks