General

  • Target

    2024-06-04_5fff1872ff95d09e59f17f44020f88e7_bkransomware

  • Size

    71KB

  • Sample

    240604-aqhllaef2w

  • MD5

    5fff1872ff95d09e59f17f44020f88e7

  • SHA1

    721f3517a4826dd530d28e1ddcf718383ecb4197

  • SHA256

    24cf61fc1f05c71abba8bba768cd57e1923aa612c787c9b7b7525158473b1c25

  • SHA512

    d1fc066814e1c45572803141eeb385a16dd30b643a6bf139fcf221193c833d4b085a3c63e212d7e374de17c1c18a49cc01005b00e0218ec9dd6b3f641f7c0dc9

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTK:ZhpAyazIlyazTK

Malware Config

Targets

    • Target

      2024-06-04_5fff1872ff95d09e59f17f44020f88e7_bkransomware

    • Size

      71KB

    • MD5

      5fff1872ff95d09e59f17f44020f88e7

    • SHA1

      721f3517a4826dd530d28e1ddcf718383ecb4197

    • SHA256

      24cf61fc1f05c71abba8bba768cd57e1923aa612c787c9b7b7525158473b1c25

    • SHA512

      d1fc066814e1c45572803141eeb385a16dd30b643a6bf139fcf221193c833d4b085a3c63e212d7e374de17c1c18a49cc01005b00e0218ec9dd6b3f641f7c0dc9

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTK:ZhpAyazIlyazTK

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks