General

  • Target

    2024-06-01_8f3f73f71e166f867cd02da5a1b994df_bkransomware

  • Size

    645KB

  • Sample

    240601-jvqbnseg3y

  • MD5

    8f3f73f71e166f867cd02da5a1b994df

  • SHA1

    1eda2fea635cbc56e1f304452228d3f47183f559

  • SHA256

    efedfc43786219d442fd3036a461861e733468a93c3d49b9ceba406f89593d50

  • SHA512

    3fbf91327e2c32356e71444e04cdddf3ffdbc42ff711e21bca1d8e4617a68da8adf0ca31a9891745a1f8a99bec5648ed07de9f30cf8d8f24ed32a0469d4e8715

  • SSDEEP

    12288:xC0QVtzJOAWlp1r0MwkRF1A+qMIlld3uYbKHpG5agF7Q2lMYdzkmdfBJ7o9qoZ:DoJOAkWkpCld3uzHpG5F88MYNTdfLcqe

Malware Config

Targets

    • Target

      2024-06-01_8f3f73f71e166f867cd02da5a1b994df_bkransomware

    • Size

      645KB

    • MD5

      8f3f73f71e166f867cd02da5a1b994df

    • SHA1

      1eda2fea635cbc56e1f304452228d3f47183f559

    • SHA256

      efedfc43786219d442fd3036a461861e733468a93c3d49b9ceba406f89593d50

    • SHA512

      3fbf91327e2c32356e71444e04cdddf3ffdbc42ff711e21bca1d8e4617a68da8adf0ca31a9891745a1f8a99bec5648ed07de9f30cf8d8f24ed32a0469d4e8715

    • SSDEEP

      12288:xC0QVtzJOAWlp1r0MwkRF1A+qMIlld3uYbKHpG5agF7Q2lMYdzkmdfBJ7o9qoZ:DoJOAkWkpCld3uzHpG5F88MYNTdfLcqe

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks