General

  • Target

    2024-06-01_9a4d32b821e84f636a6a75353677c01c_bkransomware

  • Size

    262KB

  • Sample

    240601-jxpsxseg8x

  • MD5

    9a4d32b821e84f636a6a75353677c01c

  • SHA1

    ed023949853bffc6644d60e6629da88bffd085a8

  • SHA256

    d8c2e64b55aa5f5df59e86b25684dfdf6cc65e470c85287557e599c2ecc394d2

  • SHA512

    638c4592b54587c39b7f6dbefd1c79e9f66e3b29d5f79edc74ca99e1e17139dbae876d233054ec4b2ad62536249de3c45cc65294f2e01431759c3864a7ef24c4

  • SSDEEP

    6144:xZ8azQ6ih1kH7xDpcVz/MYiSGtFlqqRmF:xC0aSjMkYihjl5mF

Malware Config

Targets

    • Target

      2024-06-01_9a4d32b821e84f636a6a75353677c01c_bkransomware

    • Size

      262KB

    • MD5

      9a4d32b821e84f636a6a75353677c01c

    • SHA1

      ed023949853bffc6644d60e6629da88bffd085a8

    • SHA256

      d8c2e64b55aa5f5df59e86b25684dfdf6cc65e470c85287557e599c2ecc394d2

    • SHA512

      638c4592b54587c39b7f6dbefd1c79e9f66e3b29d5f79edc74ca99e1e17139dbae876d233054ec4b2ad62536249de3c45cc65294f2e01431759c3864a7ef24c4

    • SSDEEP

      6144:xZ8azQ6ih1kH7xDpcVz/MYiSGtFlqqRmF:xC0aSjMkYihjl5mF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks