General

  • Target

    2024-05-30_a37c74844524fb07af9f77fa85cb23a2_bkransomware

  • Size

    71KB

  • Sample

    240530-3f5ycseb4z

  • MD5

    a37c74844524fb07af9f77fa85cb23a2

  • SHA1

    b9e75f0f6dbee8ba0907400aa4196307f7ae10e5

  • SHA256

    098152754376860241fa43151c76eecc64a705248c70edefc29cb6104b911ebf

  • SHA512

    5a80856ad2096954d0de18f1cb0aec570bf1338ec66b2d2da4ed04435d779665b7551a16c95dea5cd639599097c5c26def32a1a14036796402d7dc683379798e

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTT:ZRpAyazIliazTT

Malware Config

Targets

    • Target

      2024-05-30_a37c74844524fb07af9f77fa85cb23a2_bkransomware

    • Size

      71KB

    • MD5

      a37c74844524fb07af9f77fa85cb23a2

    • SHA1

      b9e75f0f6dbee8ba0907400aa4196307f7ae10e5

    • SHA256

      098152754376860241fa43151c76eecc64a705248c70edefc29cb6104b911ebf

    • SHA512

      5a80856ad2096954d0de18f1cb0aec570bf1338ec66b2d2da4ed04435d779665b7551a16c95dea5cd639599097c5c26def32a1a14036796402d7dc683379798e

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTT:ZRpAyazIliazTT

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks