General

  • Target

    2024-06-01_0a5801c2caf2bd9d066bba67f4a509b6_bkransomware

  • Size

    71KB

  • Sample

    240601-g5stfadc79

  • MD5

    0a5801c2caf2bd9d066bba67f4a509b6

  • SHA1

    ed5723b9b441291d746c814cf3682ead855c888f

  • SHA256

    9f2c26f1b6091a93b2201c4aaca817d668fcbb1acfd7b71bacb2ea92121ca6e2

  • SHA512

    bd903da22b4617fab1c404af9732c91b22dedce298f574ac7f612ac0b94a1685fe4d5bc239acbc18b60d3b2f6288162d9ae8f48ee2382936b31ca127d1a7c13a

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT8v:ZRpAyazIliazT8

Malware Config

Targets

    • Target

      2024-06-01_0a5801c2caf2bd9d066bba67f4a509b6_bkransomware

    • Size

      71KB

    • MD5

      0a5801c2caf2bd9d066bba67f4a509b6

    • SHA1

      ed5723b9b441291d746c814cf3682ead855c888f

    • SHA256

      9f2c26f1b6091a93b2201c4aaca817d668fcbb1acfd7b71bacb2ea92121ca6e2

    • SHA512

      bd903da22b4617fab1c404af9732c91b22dedce298f574ac7f612ac0b94a1685fe4d5bc239acbc18b60d3b2f6288162d9ae8f48ee2382936b31ca127d1a7c13a

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT8v:ZRpAyazIliazT8

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks