General

  • Target

    2024-06-04_07d40e2819fe4c0bf7b1e50491dc207a_bkransomware

  • Size

    73KB

  • Sample

    240604-s7lzfsce55

  • MD5

    07d40e2819fe4c0bf7b1e50491dc207a

  • SHA1

    487d81e25f022d9f6e054546c2754b8759070d87

  • SHA256

    bbcd4f0d48bb3fc2af83e19efba025ffe7276721fd5d274d1eb4ae26fa24b9a7

  • SHA512

    f0ee070eef0c526dc53cf6eb2213cd5b3c7294e3cf4c7e280db39345d0f3002046b2e5bb3040fe6a25863b792a8d6e3fa0d9d53541a5be20624a1bbda62ed3dd

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTflMNv:ZRpAyazIliazTfA

Malware Config

Targets

    • Target

      2024-06-04_07d40e2819fe4c0bf7b1e50491dc207a_bkransomware

    • Size

      73KB

    • MD5

      07d40e2819fe4c0bf7b1e50491dc207a

    • SHA1

      487d81e25f022d9f6e054546c2754b8759070d87

    • SHA256

      bbcd4f0d48bb3fc2af83e19efba025ffe7276721fd5d274d1eb4ae26fa24b9a7

    • SHA512

      f0ee070eef0c526dc53cf6eb2213cd5b3c7294e3cf4c7e280db39345d0f3002046b2e5bb3040fe6a25863b792a8d6e3fa0d9d53541a5be20624a1bbda62ed3dd

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlzuazTflMNv:ZRpAyazIliazTfA

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks