e553c3ae185d8b0b437fc5aaf8db94b54033949b1a2846b900a5242b076d7365 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-05-25...re.exe

windows7-x64

7

2024-05-25...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-25_497fcd989d72d639251cf89ed46c728b_bkransomware
Size

1.8MB
Sample

240525-zrwbhsaf59
MD5

497fcd989d72d639251cf89ed46c728b
SHA1

a7f94a9d0b4beedc5a8f00357dcfdff0e2eb5bc4
SHA256

e553c3ae185d8b0b437fc5aaf8db94b54033949b1a2846b900a5242b076d7365
SHA512

62ec0d8f4aa41160f73d48212ea1d3d8274c01a345438e433438d9db4d65f63d35088463bbc89f915f83b91fa6eca607241f0be065e9cae5b858629884f68f4f
SSDEEP

49152:2E19+ApwXk1QE1RzsEQPaxHNPs7YSLTQYWkK2/:b93wXmoKcJ3rL

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-05-25_497fcd989d72d639251cf89ed46c728b_bkransomware.exe

Resource

win7-20240215-en

spyware stealer

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-25_497fcd989d72d639251cf89ed46c728b_bkransomware.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-25_497fcd989d72d639251cf89ed46c728b_bkransomware
- Size
  
  1.8MB
- MD5
  
  497fcd989d72d639251cf89ed46c728b
- SHA1
  
  a7f94a9d0b4beedc5a8f00357dcfdff0e2eb5bc4
- SHA256
  
  e553c3ae185d8b0b437fc5aaf8db94b54033949b1a2846b900a5242b076d7365
- SHA512
  
  62ec0d8f4aa41160f73d48212ea1d3d8274c01a345438e433438d9db4d65f63d35088463bbc89f915f83b91fa6eca607241f0be065e9cae5b858629884f68f4f
- SSDEEP
  
  49152:2E19+ApwXk1QE1RzsEQPaxHNPs7YSLTQYWkK2/:b93wXmoKcJ3rL
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy