6b5d86495c83f479aeed31a2ec72a0c4934666b48d93f3dd926d2bdf65acc9fb | Triage

Sharing

General

Target

2024-05-21_3881be410c116d249a71a01c21c43706_bkransomware
Size

14.3MB
Sample

240521-r4alkshf3t
MD5

3881be410c116d249a71a01c21c43706
SHA1

f84d31e851abea66778e8294439dd523fa65bb74
SHA256

6b5d86495c83f479aeed31a2ec72a0c4934666b48d93f3dd926d2bdf65acc9fb
SHA512

be119cf0498876a1ab83fb8cdc27ec20f9f2bac5d5799c181dd01bf575b632d581a4b1049ef424ca463f1c4388abc93303222dd2b05472584226282184cb84f3
SSDEEP

98304:JLZjmQzW5VPC0vwMdcqSB+cDR9s+kLefGWUsOkSVncYvoNeHm55UGsHaCIyTF558:J5A9wvqSv3KBRoRfodw/f7vNgeXSW0DU

Score

5^/10

Malware Config

Targets

- Target
  
  2024-05-21_3881be410c116d249a71a01c21c43706_bkransomware
- Size
  
  14.3MB
- MD5
  
  3881be410c116d249a71a01c21c43706
- SHA1
  
  f84d31e851abea66778e8294439dd523fa65bb74
- SHA256
  
  6b5d86495c83f479aeed31a2ec72a0c4934666b48d93f3dd926d2bdf65acc9fb
- SHA512
  
  be119cf0498876a1ab83fb8cdc27ec20f9f2bac5d5799c181dd01bf575b632d581a4b1049ef424ca463f1c4388abc93303222dd2b05472584226282184cb84f3
- SSDEEP
  
  98304:JLZjmQzW5VPC0vwMdcqSB+cDR9s+kLefGWUsOkSVncYvoNeHm55UGsHaCIyTF558:J5A9wvqSv3KBRoRfodw/f7vNgeXSW0DU
Score

5^/10
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2