General

  • Target

    2024-06-03_8482c732191dc39199cc140ed668feb5_bkransomware

  • Size

    174KB

  • Sample

    240603-flnjyacc2z

  • MD5

    8482c732191dc39199cc140ed668feb5

  • SHA1

    3a51520fec69a0120732c2fc6f8ba88b55533b13

  • SHA256

    5b985b5e45f76723b4b51765883a071137c149a9e3fb181e5eaa6247758b96ed

  • SHA512

    120f9de1704ed542b57b735d35759629cbb483cc32fd8cd7df3d0f9874bb04be47f72d0d468d453a8a882b4f3585726e9998fc0279f8161eefa4f65a17c96904

  • SSDEEP

    3072:ZhpAyazIlyazTtVC2FT4X8D/s55R0dcrOMRPInOjYdSPo2FlUyg:hZMazxVCHUk55ZrOGInMrlg

Malware Config

Targets

    • Target

      2024-06-03_8482c732191dc39199cc140ed668feb5_bkransomware

    • Size

      174KB

    • MD5

      8482c732191dc39199cc140ed668feb5

    • SHA1

      3a51520fec69a0120732c2fc6f8ba88b55533b13

    • SHA256

      5b985b5e45f76723b4b51765883a071137c149a9e3fb181e5eaa6247758b96ed

    • SHA512

      120f9de1704ed542b57b735d35759629cbb483cc32fd8cd7df3d0f9874bb04be47f72d0d468d453a8a882b4f3585726e9998fc0279f8161eefa4f65a17c96904

    • SSDEEP

      3072:ZhpAyazIlyazTtVC2FT4X8D/s55R0dcrOMRPInOjYdSPo2FlUyg:hZMazxVCHUk55ZrOGInMrlg

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks