General

  • Target

    2024-06-03_f262fcd17104f903e343fe739502f0d6_bkransomware

  • Size

    72KB

  • Sample

    240603-kjf5asae94

  • MD5

    f262fcd17104f903e343fe739502f0d6

  • SHA1

    90f1aebffe5e3966a0ce94c9dc9ded1d9dcf8c61

  • SHA256

    620d13c4a73f2fef68c67391ab2cfa00dbe4443a673352df13cb265c2f00d5e1

  • SHA512

    7f6a336e3c62a59709f81e7ec39699086b514a493b1e51d00fc990459ce378e172de6bd7c98145e43a410ae963bd47ff4625ab0692aaf1fcee40c6db1658c531

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT6:ZRpAyazIliazT6

Malware Config

Targets

    • Target

      2024-06-03_f262fcd17104f903e343fe739502f0d6_bkransomware

    • Size

      72KB

    • MD5

      f262fcd17104f903e343fe739502f0d6

    • SHA1

      90f1aebffe5e3966a0ce94c9dc9ded1d9dcf8c61

    • SHA256

      620d13c4a73f2fef68c67391ab2cfa00dbe4443a673352df13cb265c2f00d5e1

    • SHA512

      7f6a336e3c62a59709f81e7ec39699086b514a493b1e51d00fc990459ce378e172de6bd7c98145e43a410ae963bd47ff4625ab0692aaf1fcee40c6db1658c531

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT6:ZRpAyazIliazT6

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks