General

  • Target

    2024-06-01_f2f96d28b48296f447081ec55e1cc25b_bkransomware

  • Size

    71KB

  • Sample

    240601-jydgaaff47

  • MD5

    f2f96d28b48296f447081ec55e1cc25b

  • SHA1

    88eba75fc23d381bed9849be26be3b0ac59c53f8

  • SHA256

    5d7d0c83e3852cc1e8b1835cf59027fc84cd016fa8caf2181fb11b5ded211dc2

  • SHA512

    4c16381bf91c278df43ec4e55a8421bc0f34773fd8d0ff7b064c5655983422577ec3fb358d9c2a04f82a570a7be770366749595e95463ba97b044b0bbe1fc317

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT5:ZRpAyazIliazT5

Malware Config

Targets

    • Target

      2024-06-01_f2f96d28b48296f447081ec55e1cc25b_bkransomware

    • Size

      71KB

    • MD5

      f2f96d28b48296f447081ec55e1cc25b

    • SHA1

      88eba75fc23d381bed9849be26be3b0ac59c53f8

    • SHA256

      5d7d0c83e3852cc1e8b1835cf59027fc84cd016fa8caf2181fb11b5ded211dc2

    • SHA512

      4c16381bf91c278df43ec4e55a8421bc0f34773fd8d0ff7b064c5655983422577ec3fb358d9c2a04f82a570a7be770366749595e95463ba97b044b0bbe1fc317

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT5:ZRpAyazIliazT5

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks