General

  • Target

    2024-06-03_3c0f210903b2af543deeced2b5539152_bkransomware

  • Size

    71KB

  • Sample

    240603-kawtdsac73

  • MD5

    3c0f210903b2af543deeced2b5539152

  • SHA1

    1b743073594e0f69c67362ff7899dd37bc9bc209

  • SHA256

    853d8a6ce5de4aaf87393b7171aded85918d25b0ff52f16a76957e2f397d6a37

  • SHA512

    ee3b66ac37611e648f818723021ae00d7efdb5ff34ed3ce283b334f37ad55083aea242b1d4b825f878c9f6cdcfc575a100baa7a4271130699ec5e71cbd527db2

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTl3:ZRpAyazIliazTR

Malware Config

Targets

    • Target

      2024-06-03_3c0f210903b2af543deeced2b5539152_bkransomware

    • Size

      71KB

    • MD5

      3c0f210903b2af543deeced2b5539152

    • SHA1

      1b743073594e0f69c67362ff7899dd37bc9bc209

    • SHA256

      853d8a6ce5de4aaf87393b7171aded85918d25b0ff52f16a76957e2f397d6a37

    • SHA512

      ee3b66ac37611e648f818723021ae00d7efdb5ff34ed3ce283b334f37ad55083aea242b1d4b825f878c9f6cdcfc575a100baa7a4271130699ec5e71cbd527db2

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTl3:ZRpAyazIliazTR

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks