General

  • Target

    2024-06-04_7f7b563cc77e13904ee0314a725cd083_bkransomware

  • Size

    71KB

  • Sample

    240604-a6j5csgb29

  • MD5

    7f7b563cc77e13904ee0314a725cd083

  • SHA1

    08f89112dfdbdb88257d8320846d864b48e9048a

  • SHA256

    06d6584f45c5204cf03d122f344f333b8a0562872a3dc1ad9260d4595ca605c5

  • SHA512

    97728b54f71e8c419b1702e963e13de011271893d4ac1f41ec6439b71d8414019d77204cdbf9f453245bd3c8d2bd2cd79c559a8d93541d6849e9b65035f12087

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT0:ZRpAyazIliazT0

Malware Config

Targets

    • Target

      2024-06-04_7f7b563cc77e13904ee0314a725cd083_bkransomware

    • Size

      71KB

    • MD5

      7f7b563cc77e13904ee0314a725cd083

    • SHA1

      08f89112dfdbdb88257d8320846d864b48e9048a

    • SHA256

      06d6584f45c5204cf03d122f344f333b8a0562872a3dc1ad9260d4595ca605c5

    • SHA512

      97728b54f71e8c419b1702e963e13de011271893d4ac1f41ec6439b71d8414019d77204cdbf9f453245bd3c8d2bd2cd79c559a8d93541d6849e9b65035f12087

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazT0:ZRpAyazIliazT0

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks