General

  • Target

    2024-06-01_a3753e717a05afbac151713074724a64_bkransomware

  • Size

    71KB

  • Sample

    240601-ja6g6aeg57

  • MD5

    a3753e717a05afbac151713074724a64

  • SHA1

    8739c7cf88591c744cc98ffaa8bb54de680ae991

  • SHA256

    d4a7b8f3f6fbb6a6bbb2f408dbec8f0bdb7439ab6ae4610e81021b3a0afb50c6

  • SHA512

    8bde35240895f8f5b27e812948f089812e35162e0ee0ea7863439f497ea76095c395836a4acd379d54bc6e6549bd594a8d0927d46e27242295a668d8723dcba7

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTIJU:ZRpAyazIliazTSU

Malware Config

Targets

    • Target

      2024-06-01_a3753e717a05afbac151713074724a64_bkransomware

    • Size

      71KB

    • MD5

      a3753e717a05afbac151713074724a64

    • SHA1

      8739c7cf88591c744cc98ffaa8bb54de680ae991

    • SHA256

      d4a7b8f3f6fbb6a6bbb2f408dbec8f0bdb7439ab6ae4610e81021b3a0afb50c6

    • SHA512

      8bde35240895f8f5b27e812948f089812e35162e0ee0ea7863439f497ea76095c395836a4acd379d54bc6e6549bd594a8d0927d46e27242295a668d8723dcba7

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTIJU:ZRpAyazIliazTSU

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks