General

  • Target

    2024-06-03_eed7c72ac005ec2aff1842c04688a730_bkransomware

  • Size

    71KB

  • Sample

    240603-lrlkesbg27

  • MD5

    eed7c72ac005ec2aff1842c04688a730

  • SHA1

    0dece82001a391a317028fe3c737c5e34dd2dccb

  • SHA256

    491adfdc3cce051731ea87c3ca9e16ffcdd8d8cc9e10d9649f8b49d5575def92

  • SHA512

    993d53d4a8708cc79a42c27b33516add0bccdeee23662540c984671955248f5d3b053e52249f4a045fa2c3d9a8015726e568976e8b041167bdc9fed10e1fee8e

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTn:ZRpAyazIliazTn

Malware Config

Targets

    • Target

      2024-06-03_eed7c72ac005ec2aff1842c04688a730_bkransomware

    • Size

      71KB

    • MD5

      eed7c72ac005ec2aff1842c04688a730

    • SHA1

      0dece82001a391a317028fe3c737c5e34dd2dccb

    • SHA256

      491adfdc3cce051731ea87c3ca9e16ffcdd8d8cc9e10d9649f8b49d5575def92

    • SHA512

      993d53d4a8708cc79a42c27b33516add0bccdeee23662540c984671955248f5d3b053e52249f4a045fa2c3d9a8015726e568976e8b041167bdc9fed10e1fee8e

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTn:ZRpAyazIliazTn

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks