General

  • Target

    2024-06-02_e1c88bb63b84d8fe05af15092e5a5b1a_bkransomware

  • Size

    71KB

  • Sample

    240602-a85h3sda9w

  • MD5

    e1c88bb63b84d8fe05af15092e5a5b1a

  • SHA1

    a7d109256a1518af51fc29214ef94f569b8738d6

  • SHA256

    d2f7fc8a7ceea23ed0f972eeb9c4c434a4d333ed4d40caf2cd85608120811e95

  • SHA512

    cb8b80f4531850d78d50f5e4ce2fbac62dca8977f74c21d7ea8cb9e91fdb588520b83cac1539bd34cfd686db3b6088ae1ecb20688049e7c9c09214179c8120ff

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTK:ZRpAyazIliazTK

Malware Config

Targets

    • Target

      2024-06-02_e1c88bb63b84d8fe05af15092e5a5b1a_bkransomware

    • Size

      71KB

    • MD5

      e1c88bb63b84d8fe05af15092e5a5b1a

    • SHA1

      a7d109256a1518af51fc29214ef94f569b8738d6

    • SHA256

      d2f7fc8a7ceea23ed0f972eeb9c4c434a4d333ed4d40caf2cd85608120811e95

    • SHA512

      cb8b80f4531850d78d50f5e4ce2fbac62dca8977f74c21d7ea8cb9e91fdb588520b83cac1539bd34cfd686db3b6088ae1ecb20688049e7c9c09214179c8120ff

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTK:ZRpAyazIliazTK

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks