General

  • Target

    2024-05-27_ea244df2ceec4693ddb3cab2824334aa_bkransomware

  • Size

    214KB

  • Sample

    240527-r1kx5sgh73

  • MD5

    ea244df2ceec4693ddb3cab2824334aa

  • SHA1

    6bdc52f7bd23e31905149fedac31166c05e15a52

  • SHA256

    20385a70d740d5a8260450df7f5cc67d7f33cc04d1f58685949237233f47c1ab

  • SHA512

    827591a16355a29ed02d854eda56a2c6ce4d0f06032e1038b65f1101ff9e05fc4e834d300adfbbb58484686c6caed2e92f342e7524d1da8e8e05d74b4fca2212

  • SSDEEP

    3072:ZRpAyazIliazTcYubxmW6OrYhmBC9IdlIWuazrA8aqcnPVJIqi65z9zVJwP:xZ8azoYKmOAmEuzspnPDIU95JA

Malware Config

Targets

    • Target

      2024-05-27_ea244df2ceec4693ddb3cab2824334aa_bkransomware

    • Size

      214KB

    • MD5

      ea244df2ceec4693ddb3cab2824334aa

    • SHA1

      6bdc52f7bd23e31905149fedac31166c05e15a52

    • SHA256

      20385a70d740d5a8260450df7f5cc67d7f33cc04d1f58685949237233f47c1ab

    • SHA512

      827591a16355a29ed02d854eda56a2c6ce4d0f06032e1038b65f1101ff9e05fc4e834d300adfbbb58484686c6caed2e92f342e7524d1da8e8e05d74b4fca2212

    • SSDEEP

      3072:ZRpAyazIliazTcYubxmW6OrYhmBC9IdlIWuazrA8aqcnPVJIqi65z9zVJwP:xZ8azoYKmOAmEuzspnPDIU95JA

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks