51ea70772515ffddf6c950986f7032d35c8a6b25d8f8ab49738311f30bbda4c6 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-05-23...re.exe

windows7-x64

7

2024-05-23...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-23_8fd12e4f929979ec608b98a9813ba43f_bkransomware
Size

712KB
Sample

240523-rltxhaeb49
MD5

8fd12e4f929979ec608b98a9813ba43f
SHA1

fbb87e1e5eae5cba97e9117221240754f2da8404
SHA256

51ea70772515ffddf6c950986f7032d35c8a6b25d8f8ab49738311f30bbda4c6
SHA512

ceb54d603a50545490629fc9adaf9bad3ec54256b014ae7283d52cf019dad18ea68dace48f34bb705f509339ee109a365a05db01308d32dfe069500e9a361db2
SSDEEP

12288:ytOw6BaOZI3XPWvOYRcDRJZ4w8qIV8mQR8XZi/mWcSjpI0Tkdure6:M6BTW+vxWJq0Q7QqtWLjXTqM

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-23_8fd12e4f929979ec608b98a9813ba43f_bkransomware.exe

Resource

win7-20240220-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-23_8fd12e4f929979ec608b98a9813ba43f_bkransomware.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-23_8fd12e4f929979ec608b98a9813ba43f_bkransomware
- Size
  
  712KB
- MD5
  
  8fd12e4f929979ec608b98a9813ba43f
- SHA1
  
  fbb87e1e5eae5cba97e9117221240754f2da8404
- SHA256
  
  51ea70772515ffddf6c950986f7032d35c8a6b25d8f8ab49738311f30bbda4c6
- SHA512
  
  ceb54d603a50545490629fc9adaf9bad3ec54256b014ae7283d52cf019dad18ea68dace48f34bb705f509339ee109a365a05db01308d32dfe069500e9a361db2
- SSDEEP
  
  12288:ytOw6BaOZI3XPWvOYRcDRJZ4w8qIV8mQR8XZi/mWcSjpI0Tkdure6:M6BTW+vxWJq0Q7QqtWLjXTqM
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy