General

  • Target

    2024-06-01_72d232b0d72f9f9fc45f52c54eafebe7_bkransomware

  • Size

    71KB

  • Sample

    240601-2gqpdsha9v

  • MD5

    72d232b0d72f9f9fc45f52c54eafebe7

  • SHA1

    093c481ed64f8eef9c9856dde1a70b7edcc31b3c

  • SHA256

    406afc443d1bf3ea8c219c168c95afe1264d73a26b7035d4cba7c78ceedd814c

  • SHA512

    12ac5d4c94de284ce728d29dc567d36eeb78d8fb61ce78144292020d2e9a3ae9c6a8d73e1282da8149c1f64d07fc927cffae8bcf789167e8203b49fbc9e1fa14

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTP:ZRpAyazIliazTP

Malware Config

Targets

    • Target

      2024-06-01_72d232b0d72f9f9fc45f52c54eafebe7_bkransomware

    • Size

      71KB

    • MD5

      72d232b0d72f9f9fc45f52c54eafebe7

    • SHA1

      093c481ed64f8eef9c9856dde1a70b7edcc31b3c

    • SHA256

      406afc443d1bf3ea8c219c168c95afe1264d73a26b7035d4cba7c78ceedd814c

    • SHA512

      12ac5d4c94de284ce728d29dc567d36eeb78d8fb61ce78144292020d2e9a3ae9c6a8d73e1282da8149c1f64d07fc927cffae8bcf789167e8203b49fbc9e1fa14

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTP:ZRpAyazIliazTP

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks