General

  • Target

    2024-06-01_2cdf96ccfded8a0d86cd904cca765980_bkransomware

  • Size

    71KB

  • Sample

    240601-2b7qqahe59

  • MD5

    2cdf96ccfded8a0d86cd904cca765980

  • SHA1

    87da6fa63a0a1ec7e4bda5daf5b2d583e78aea23

  • SHA256

    c9faf69d2026a6f0a07d3fc36f11effbff38d685bb56f99c55952e8dfbd82879

  • SHA512

    4b62a0504cf3156c2c544624fb7750e538fbcec144aaf965f595deae40c17c0739245146e6379184269c9fd80dc41f780d17367f3cecf871279210be240ba427

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTz7:ZRpAyazIliazTP

Malware Config

Targets

    • Target

      2024-06-01_2cdf96ccfded8a0d86cd904cca765980_bkransomware

    • Size

      71KB

    • MD5

      2cdf96ccfded8a0d86cd904cca765980

    • SHA1

      87da6fa63a0a1ec7e4bda5daf5b2d583e78aea23

    • SHA256

      c9faf69d2026a6f0a07d3fc36f11effbff38d685bb56f99c55952e8dfbd82879

    • SHA512

      4b62a0504cf3156c2c544624fb7750e538fbcec144aaf965f595deae40c17c0739245146e6379184269c9fd80dc41f780d17367f3cecf871279210be240ba427

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTz7:ZRpAyazIliazTP

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks