General

  • Target

    2024-06-03_5ae6165f7e9aad3d387b2556b0401d94_bkransomware

  • Size

    74KB

  • Sample

    240603-lj6wdsac3x

  • MD5

    5ae6165f7e9aad3d387b2556b0401d94

  • SHA1

    feaa0d71654c9832ff61762660002822abf0e44b

  • SHA256

    ef235b81e0f6d1690e24479157460bfa36658ee879f4b14896387d083c27ae1b

  • SHA512

    32943080673db4918afe92586a070639796ad55d6d438a18866a9031dce4fad8a3aabcc57864d964ba51223f3338ae18894e105a32a5c48f056204d50efdcc14

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTd5Jw:ZRpAyazIliazTdw

Malware Config

Targets

    • Target

      2024-06-03_5ae6165f7e9aad3d387b2556b0401d94_bkransomware

    • Size

      74KB

    • MD5

      5ae6165f7e9aad3d387b2556b0401d94

    • SHA1

      feaa0d71654c9832ff61762660002822abf0e44b

    • SHA256

      ef235b81e0f6d1690e24479157460bfa36658ee879f4b14896387d083c27ae1b

    • SHA512

      32943080673db4918afe92586a070639796ad55d6d438a18866a9031dce4fad8a3aabcc57864d964ba51223f3338ae18894e105a32a5c48f056204d50efdcc14

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTd5Jw:ZRpAyazIliazTdw

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks