General

  • Target

    2024-06-12_444fca470b903e28c151ced21d26f67d_bkransomware

  • Size

    71KB

  • Sample

    240612-3ev2rsvelb

  • MD5

    444fca470b903e28c151ced21d26f67d

  • SHA1

    2ce17f650a6e383f4ba11a14b597409da7be07f8

  • SHA256

    fa845ccb73fcd9cc1d6e85aa126802f308a11a33cdcb22eb7ff4c40617dfa748

  • SHA512

    a1459c0a78e6c0877a58fc2918a65f88d483cdd5394001e6b2a0efd84591a6d4fde2b6af541ffe0e350bbc76489735eb06c858e9b38adf6b7a1403bacd10d326

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazT+a:ZhpAyazIlyazT+a

Malware Config

Targets

    • Target

      2024-06-12_444fca470b903e28c151ced21d26f67d_bkransomware

    • Size

      71KB

    • MD5

      444fca470b903e28c151ced21d26f67d

    • SHA1

      2ce17f650a6e383f4ba11a14b597409da7be07f8

    • SHA256

      fa845ccb73fcd9cc1d6e85aa126802f308a11a33cdcb22eb7ff4c40617dfa748

    • SHA512

      a1459c0a78e6c0877a58fc2918a65f88d483cdd5394001e6b2a0efd84591a6d4fde2b6af541ffe0e350bbc76489735eb06c858e9b38adf6b7a1403bacd10d326

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazT+a:ZhpAyazIlyazT+a

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks