Overview

overview

7

Static

static

3

2024-05-23...re.exe

windows7-x64

7

2024-05-23...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_b4c7ff6e91155a6ac387ca7ad8146e77_bkransomware

  • Size

    24.4MB

  • Sample

    240523-jt6l9sab36

  • MD5

    b4c7ff6e91155a6ac387ca7ad8146e77

  • SHA1

    16c32bdd771e5112178eff4115cc04dd24716346

  • SHA256

    1e0b4f247c0b4428f684e83578e8a38aa44db530e896246f0762fc97d4187ca0

  • SHA512

    d7394c2e33201b2caec117fa41d624e2b3b6c16bf77237a619f7e928a8d8466a8f7fb64e517261f23c24ccdef8182887fcaa92af5e2ad004f597420771cc22de

  • SSDEEP

    786432:oQKznpimIn1+FbhdTwlft+4zSnS42kwk8TEWB2:oxwmI1UbHwlU4zSdv8Vk

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2024-05-23_b4c7ff6e91155a6ac387ca7ad8146e77_bkransomware

    • Size

      24.4MB

    • MD5

      b4c7ff6e91155a6ac387ca7ad8146e77

    • SHA1

      16c32bdd771e5112178eff4115cc04dd24716346

    • SHA256

      1e0b4f247c0b4428f684e83578e8a38aa44db530e896246f0762fc97d4187ca0

    • SHA512

      d7394c2e33201b2caec117fa41d624e2b3b6c16bf77237a619f7e928a8d8466a8f7fb64e517261f23c24ccdef8182887fcaa92af5e2ad004f597420771cc22de

    • SSDEEP

      786432:oQKznpimIn1+FbhdTwlft+4zSnS42kwk8TEWB2:oxwmI1UbHwlU4zSdv8Vk

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks