53c58ca9ebf3473943602b0172395bbc143a8b602208dd96ce6607ff7ca9dcc5 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-06-06...ny.exe

windows7-x64

7

2024-06-06...ny.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-06_bec277bb19e2c3d093967bd569aedda4_bkransomware_karagany
Size

677KB
Sample

240606-v15jbsab99
MD5

bec277bb19e2c3d093967bd569aedda4
SHA1

f8d083cd7cebfbad7e05e1ed9eb4921ea047b0ec
SHA256

53c58ca9ebf3473943602b0172395bbc143a8b602208dd96ce6607ff7ca9dcc5
SHA512

dc5f4517888d9f09b88f4dada99b3df648783077e9b2de1e93b3f2b81bfcd8cc62b904134abe2cdec0e925d0fcb3a1def4d3bd91aaecc372baa147854f479a1e
SSDEEP

12288:ZvXk1+4+/x8J7ct3z5htUcQ1MlhrmQgwwJzt5+7fyZkCtXFiWZF/3o:Bk1+4+mIJz5IcuMlQHJxrDiSi

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-06-06_bec277bb19e2c3d093967bd569aedda4_bkransomware_karagany.exe

Resource

win7-20240419-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-06_bec277bb19e2c3d093967bd569aedda4_bkransomware_karagany.exe

Resource

win10v2004-20240426-en

spyware stealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-06_bec277bb19e2c3d093967bd569aedda4_bkransomware_karagany
- Size
  
  677KB
- MD5
  
  bec277bb19e2c3d093967bd569aedda4
- SHA1
  
  f8d083cd7cebfbad7e05e1ed9eb4921ea047b0ec
- SHA256
  
  53c58ca9ebf3473943602b0172395bbc143a8b602208dd96ce6607ff7ca9dcc5
- SHA512
  
  dc5f4517888d9f09b88f4dada99b3df648783077e9b2de1e93b3f2b81bfcd8cc62b904134abe2cdec0e925d0fcb3a1def4d3bd91aaecc372baa147854f479a1e
- SSDEEP
  
  12288:ZvXk1+4+/x8J7ct3z5htUcQ1MlhrmQgwwJzt5+7fyZkCtXFiWZF/3o:Bk1+4+mIJz5IcuMlQHJxrDiSi
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy