General

  • Target

    2024-06-03_3213c6175c2f1919a41d773c7d62d395_bkransomware

  • Size

    71KB

  • Sample

    240603-lgzz3aab6t

  • MD5

    3213c6175c2f1919a41d773c7d62d395

  • SHA1

    f89f3488d223f1ac843900669ea39f5faee55ad0

  • SHA256

    3ce3210ade8bb1bc8281b764344310669f6582c14900970aa5d97876893fd08e

  • SHA512

    678e84271b9b95101862ebda3d2fa7da8b4c9b71a3e01ca892bdb9956751c9e2c9859e84885e36b0021874924881a7c8b3e20aec3bc212e44a70c24320dc0a07

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT7:ZRpAyazIliazT7

Malware Config

Targets

    • Target

      2024-06-03_3213c6175c2f1919a41d773c7d62d395_bkransomware

    • Size

      71KB

    • MD5

      3213c6175c2f1919a41d773c7d62d395

    • SHA1

      f89f3488d223f1ac843900669ea39f5faee55ad0

    • SHA256

      3ce3210ade8bb1bc8281b764344310669f6582c14900970aa5d97876893fd08e

    • SHA512

      678e84271b9b95101862ebda3d2fa7da8b4c9b71a3e01ca892bdb9956751c9e2c9859e84885e36b0021874924881a7c8b3e20aec3bc212e44a70c24320dc0a07

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT7:ZRpAyazIliazT7

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks