Overview

overview

3

Static

static

3

2024-06-04...re.exe

windows7-x64

1

2024-06-04...re.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    133s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04-06-2024 12:29

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2024-06-04_9ad6ad9694a09527999f6a5a248a1f37_bkransomware.exe

  • Size

    637KB

  • MD5

    9ad6ad9694a09527999f6a5a248a1f37

  • SHA1

    a0fa55026ad4b365fa60a7649ee3439a6c8f887e

  • SHA256

    1be435cea65f744a8933a6a115ebd71d807c84c71e8ead37efd291858bbedba4

  • SHA512

    649e41de4dbd039d4ca535a11d551a32924483d7b6b6ac4866ec33b2f34dc9ddd942d6d442968dd9952cd3014a8506075670a9870c9acebc2496ca0a5160aa3e

  • SSDEEP

    12288:92Ka2pRmH6ysvWsmYDMtNhkxh3dfhg4OQYZeVHgMkakT/xdV+hoJ/R:9fvlmYDMt0ZuZeVeT/xX+hoJ

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2024-06-04_9ad6ad9694a09527999f6a5a248a1f37_bkransomware.exe
    "C:\Users\Admin\AppData\Local\Temp\2024-06-04_9ad6ad9694a09527999f6a5a248a1f37_bkransomware.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3204
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --field-trial-handle=4488,i,13281073920029625837,8253721632651544158,262144 --variations-seed-version --mojo-platform-channel-handle=3888 /prefetch:8
    1⤵
      PID:3792

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\TMSetup.txt
      Filesize

      3KB

      MD5

      5395aa58b020a7fa8452afb486467a53

      SHA1

      b4c7da88718f9b18cc259f159b47a2c67a99b208

      SHA256

      db22a0e4614b0ea3679a00d3b72915f51f49fd0a50cd310097bbd2b2ffaaa29b

      SHA512

      4a7a722d0bb38b3084abe07c746e7c577fc1991c9c65943b324acc8d14d81cad4a8688b33a68f66ae725e568ff2f22fc8eef7557a1d313b29983371aaa236406

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\TMSetup.txt
      Filesize

      4KB

      MD5

      18886e6d74b9a08bce34095dbf9df17d

      SHA1

      e0e90435796fe3f7d9fbb8e07862b7675d8f956b

      SHA256

      1db309ace256f3641464a8e063bce43479b70fa71cb21ad57a60a0f508bd9f03

      SHA512

      8879922d7d4fd0bab47b42e2ec1e4c381bfbc5bc473be249f5d6aa7e4a3b775dafc08f8e97bdc3131034419f0430985d430a7672fe0c73352087cd818fb42800

      Download Submit

    • C:\Users\Admin\AppData\Local\Temp\TMSetup.txt
      Filesize

      3KB

      MD5

      6fbe932808cf6bb69a8d8edc5627934b

      SHA1

      5b5da5e63e52b0c8e88193803fd3e3087bce22de

      SHA256

      4437f901dbfdbd86d7883ea7f5a39b93095d0da46acb8daf242a4c510a2c93fd

      SHA512

      78435b51a6283810de331b3b8a3348e9a37f4a1536586ae1ebb762f96254064d3cd78bc0e24711c31dd5cd674522d407ee6865321e0bedde2862a6cef04963b3

      Download Submit