General

  • Target

    2024-06-12_28560f321b291eeb86e28147953e3910_bkransomware

  • Size

    71KB

  • Sample

    240612-3c79baycrl

  • MD5

    28560f321b291eeb86e28147953e3910

  • SHA1

    fdc016b6e5d479002c7338e296afdfe63bf8d2b6

  • SHA256

    cd67fd051f0e1c46c3617fdb558542b6af91023dba60b13a2c5ded2d3c79b901

  • SHA512

    5a3a38fae2681e493c5bf20765e40e7ee4ed70628c6c9bad1de53aa8e07760bd11258ca953a8c2e7c5411cf2d6f74e8745f3dae72f69f9af7a7bb56dc49438c8

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTVa:ZhpAyazIlyazTI

Malware Config

Targets

    • Target

      2024-06-12_28560f321b291eeb86e28147953e3910_bkransomware

    • Size

      71KB

    • MD5

      28560f321b291eeb86e28147953e3910

    • SHA1

      fdc016b6e5d479002c7338e296afdfe63bf8d2b6

    • SHA256

      cd67fd051f0e1c46c3617fdb558542b6af91023dba60b13a2c5ded2d3c79b901

    • SHA512

      5a3a38fae2681e493c5bf20765e40e7ee4ed70628c6c9bad1de53aa8e07760bd11258ca953a8c2e7c5411cf2d6f74e8745f3dae72f69f9af7a7bb56dc49438c8

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTVa:ZhpAyazIlyazTI

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks