Overview

overview

7

Static

static

3

2024-05-29...re.exe

windows7-x64

7

2024-05-29...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-29_a7dad7689a7fdaaa2f10b8b8b4a10614_bkransomware

  • Size

    96KB

  • Sample

    240529-mn992sbg4t

  • MD5

    a7dad7689a7fdaaa2f10b8b8b4a10614

  • SHA1

    030b6b74fc1bf1a1a8ce9bd6d44e8a5a74186d63

  • SHA256

    098a1313288779f4035a3959fb763ce9d3c4d21d7832795e2480796672592873

  • SHA512

    0b013067acb6b833fcfb58cf23c6c3057a67964d60a864c8f27927bb357f2d11119bd85066d8566633df860e0ce1a12c0ca62b6e87cff7bfe258ffbca8c6540a

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTPpvkjauE18JYdBRxN4sq9Tztz:ZRpAyazIliazTJ3uESyhxN1I1z

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-05-29_a7dad7689a7fdaaa2f10b8b8b4a10614_bkransomware

    • Size

      96KB

    • MD5

      a7dad7689a7fdaaa2f10b8b8b4a10614

    • SHA1

      030b6b74fc1bf1a1a8ce9bd6d44e8a5a74186d63

    • SHA256

      098a1313288779f4035a3959fb763ce9d3c4d21d7832795e2480796672592873

    • SHA512

      0b013067acb6b833fcfb58cf23c6c3057a67964d60a864c8f27927bb357f2d11119bd85066d8566633df860e0ce1a12c0ca62b6e87cff7bfe258ffbca8c6540a

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTPpvkjauE18JYdBRxN4sq9Tztz:ZRpAyazIliazTJ3uESyhxN1I1z

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks