Overview

overview

7

Static

static

3

2024-05-23...re.exe

windows7-x64

7

2024-05-23...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_846e60356121f3fcafd95e331689505c_bkransomware

  • Size

    13.3MB

  • Sample

    240523-jspx5aab4w

  • MD5

    846e60356121f3fcafd95e331689505c

  • SHA1

    2f3dbf73aa2c681a6b4234bcd1aad339850d99fc

  • SHA256

    7e18de9647f5bad9a5c56e796e78718ce570aa66b9b0835ad63e5558cb1e6a9a

  • SHA512

    65e322edb9483417c90745e1fd30ec3d93419508e4cdd8b43d21275303b0f682c1e40ba30d53681be16ec74d0ff297fb6768fd61994ecc37af98272a14395b4f

  • SSDEEP

    393216:fJMSrvzSYmaa2lCNo25azDRIk89zDmlHj9iYx7zgc+N:qSDzSYjImEa3O/xuj9NfA

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2024-05-23_846e60356121f3fcafd95e331689505c_bkransomware

    • Size

      13.3MB

    • MD5

      846e60356121f3fcafd95e331689505c

    • SHA1

      2f3dbf73aa2c681a6b4234bcd1aad339850d99fc

    • SHA256

      7e18de9647f5bad9a5c56e796e78718ce570aa66b9b0835ad63e5558cb1e6a9a

    • SHA512

      65e322edb9483417c90745e1fd30ec3d93419508e4cdd8b43d21275303b0f682c1e40ba30d53681be16ec74d0ff297fb6768fd61994ecc37af98272a14395b4f

    • SSDEEP

      393216:fJMSrvzSYmaa2lCNo25azDRIk89zDmlHj9iYx7zgc+N:qSDzSYjImEa3O/xuj9NfA

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks