General

  • Target

    2024-05-30_9dbb578d246ee8b4ba18b51f2823f2f5_bkransomware

  • Size

    172KB

  • Sample

    240530-3fw1fsfa82

  • MD5

    9dbb578d246ee8b4ba18b51f2823f2f5

  • SHA1

    01c1d029d2a9d4a22f0b3d608547fc4accc80bd2

  • SHA256

    6d79d706c05700383ae8f443c07b432d6a5e9f73a042480188eb1911fb46af44

  • SHA512

    03b22bd5e1db0cb528ffd282e540fb3f7fe7398ac1e3dd313653d63906a4d75365ee662eb4eb46965054328bcc20a9fc2ffc9ae3fefdfb83b1001df2bbaa79d7

  • SSDEEP

    3072:ZRpAyazIliazT8qEWz4JOhy5KOzIdmP6X3TwZgP92DQ:xZ8azAIMJ6yQ2gP80

Malware Config

Targets

    • Target

      2024-05-30_9dbb578d246ee8b4ba18b51f2823f2f5_bkransomware

    • Size

      172KB

    • MD5

      9dbb578d246ee8b4ba18b51f2823f2f5

    • SHA1

      01c1d029d2a9d4a22f0b3d608547fc4accc80bd2

    • SHA256

      6d79d706c05700383ae8f443c07b432d6a5e9f73a042480188eb1911fb46af44

    • SHA512

      03b22bd5e1db0cb528ffd282e540fb3f7fe7398ac1e3dd313653d63906a4d75365ee662eb4eb46965054328bcc20a9fc2ffc9ae3fefdfb83b1001df2bbaa79d7

    • SSDEEP

      3072:ZRpAyazIliazT8qEWz4JOhy5KOzIdmP6X3TwZgP92DQ:xZ8azAIMJ6yQ2gP80

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks