Overview

overview

3

Static

static

3

2024-06-04...re.exe

windows7-x64

1

2024-06-04...re.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    04-06-2024 05:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-06-04_178648ae8ae2217cb4678d29b34cb7e9_bkransomware.exe

  • Size

    637KB

  • MD5

    178648ae8ae2217cb4678d29b34cb7e9

  • SHA1

    2631691e1914e6a744d3db77c7b94c52a6979834

  • SHA256

    49bf4512604026720c7b24d126052604f6de74b5f899506d11486afe7638b955

  • SHA512

    37caf761f19646936fb12119fca76cbc5ae61cc2ac512c72c4b8ebfdc57869686e7920d8f1f26c0192a8d8435bfd78631b4bd13bcbeb45d3712e156b61437ac4

  • SSDEEP

    12288:92Ka2pRmH6ysvWsmYDMtNhkxh3dfhg4OQYZeVHgMkakT/xdV+hoJ/R:9fvlmYDMt0ZuZeVeT/xX+hoJ

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-06-04_178648ae8ae2217cb4678d29b34cb7e9_bkransomware.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-06-04_178648ae8ae2217cb4678d29b34cb7e9_bkransomware.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2360

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\TMSetup.txt
    Filesize

    3KB

    MD5

    8a3110a2743637b7e7915bb3f80e4c0c

    SHA1

    40cc0a897c37a3be34f90efc71907606e83952fd

    SHA256

    ed74acd37830811ddc740d36d788e0dfb743a94c3cdd6ff7c15e21526dc0f50e

    SHA512

    d0d9d7b98d073a8efcb06b2cb6db55c3fb908da53cc15607b1004de69a83cf6062aacc0ae9754612b8196d4ab423f15bef74d34ca5cffae9d811700c6b4c3e64

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TMSetup.txt
    Filesize

    4KB

    MD5

    c5af014a65b47d1657ed766f4762be74

    SHA1

    e42acd5ce4cb6e55e5e00b0afe363318c0972a83

    SHA256

    3ec6ac1186dc18161ebe9254b165eebac50496ef8e86c75b3939e8af37efb07e

    SHA512

    f990ff6ddb552da74416377192b51180d62483873e803a59ba7a9216356700a6f285271cf2cb0d13dcf72153d36b7ec1660fc63576a89022fe4e05bcc68b4661

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\TMSetup.txt
    Filesize

    1KB

    MD5

    97848b4b1bb950aa6d346c64bf2b02b0

    SHA1

    8ea334bd0a04502d48f62620db838b96a9e46f68

    SHA256

    988754b87b9743a97e5b26dbb4bcb335021db0a9df2b435690b39048fa0d4069

    SHA512

    2737ce65c62126d354871176751835b5ab3809fea53cbb7dbb5fd026f5c0538104ff8053e15d53777e1b77dd5e76bf4569bee327df2c0e068c6e21fc02a61482

    Download Submit