General

  • Target

    2024-06-01_c2aad52d4b1859c077467fda77567c8f_bkransomware

  • Size

    71KB

  • Sample

    240601-jqhe9see8w

  • MD5

    c2aad52d4b1859c077467fda77567c8f

  • SHA1

    8b31b3175398d69f8554e7d9c9167e387d117662

  • SHA256

    c996aff28c14c76bd2a72719d6ff10d5c1a0c4824c9d92b699321cf2b8d83da3

  • SHA512

    8a425fb21e31f2fe911f791f5014bc0cd2d0d267bf153314c27a1a47f6b6dc3eae6fb75772ea6cf215a10e3c10024aba0689039a7928230b6902f57f8ede54d9

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT1:ZRpAyazIliazT1

Malware Config

Targets

    • Target

      2024-06-01_c2aad52d4b1859c077467fda77567c8f_bkransomware

    • Size

      71KB

    • MD5

      c2aad52d4b1859c077467fda77567c8f

    • SHA1

      8b31b3175398d69f8554e7d9c9167e387d117662

    • SHA256

      c996aff28c14c76bd2a72719d6ff10d5c1a0c4824c9d92b699321cf2b8d83da3

    • SHA512

      8a425fb21e31f2fe911f791f5014bc0cd2d0d267bf153314c27a1a47f6b6dc3eae6fb75772ea6cf215a10e3c10024aba0689039a7928230b6902f57f8ede54d9

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT1:ZRpAyazIliazT1

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks