General

  • Target

    2024-05-27_d5621e65b95b35a1b3108b4de28871a1_bkransomware_karagany

  • Size

    1.5MB

  • Sample

    240527-rzyslsgh54

  • MD5

    d5621e65b95b35a1b3108b4de28871a1

  • SHA1

    b46cce772602a616d7a31a31763e43c01cb5c5c6

  • SHA256

    51f9d538fc4b192c269b593103d2869dcf4b5b4aca5e2151bd805d1f6d8691e1

  • SHA512

    324f3400acb0002d5bdf14d0e1533c9ab3e1f21657a746a3c8c276f3b6c71087b4bfd45c8670ead459605c3437a93deb49e4a676063d0a6c8e59ed274cd9decb

  • SSDEEP

    12288:fvXk1PGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPhq:nk1ut/sBlDqgZQd6XKtiMJYiPUq

Score
7/10

Malware Config

Targets

    • Target

      2024-05-27_d5621e65b95b35a1b3108b4de28871a1_bkransomware_karagany

    • Size

      1.5MB

    • MD5

      d5621e65b95b35a1b3108b4de28871a1

    • SHA1

      b46cce772602a616d7a31a31763e43c01cb5c5c6

    • SHA256

      51f9d538fc4b192c269b593103d2869dcf4b5b4aca5e2151bd805d1f6d8691e1

    • SHA512

      324f3400acb0002d5bdf14d0e1533c9ab3e1f21657a746a3c8c276f3b6c71087b4bfd45c8670ead459605c3437a93deb49e4a676063d0a6c8e59ed274cd9decb

    • SSDEEP

      12288:fvXk1PGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPhq:nk1ut/sBlDqgZQd6XKtiMJYiPUq

    Score
    7/10
    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks