General

  • Target

    2024-06-12_a24cc92f5baf8598fa028fd3b256e168_bkransomware

  • Size

    96KB

  • Sample

    240612-3kr73ayfmp

  • MD5

    a24cc92f5baf8598fa028fd3b256e168

  • SHA1

    9a6d7634f72814b0a5c3bc2ee833e0b705b65827

  • SHA256

    2e4c05f898cdbadfaf283223092b5bfdca6bb12365dbca8f604f16474fd66cac

  • SHA512

    f062f8e827ebc5523ab843f14991dc6fa34e5639af3dc23a25fd39d2da04c95e068236b35f6ac00a61ffee03501dba0a0bc01b5ac3a31c3af30a80164fb44c3c

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTadil/LehVWF:ZhpAyazIlyazTaeeG

Malware Config

Targets

    • Target

      2024-06-12_a24cc92f5baf8598fa028fd3b256e168_bkransomware

    • Size

      96KB

    • MD5

      a24cc92f5baf8598fa028fd3b256e168

    • SHA1

      9a6d7634f72814b0a5c3bc2ee833e0b705b65827

    • SHA256

      2e4c05f898cdbadfaf283223092b5bfdca6bb12365dbca8f604f16474fd66cac

    • SHA512

      f062f8e827ebc5523ab843f14991dc6fa34e5639af3dc23a25fd39d2da04c95e068236b35f6ac00a61ffee03501dba0a0bc01b5ac3a31c3af30a80164fb44c3c

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTadil/LehVWF:ZhpAyazIlyazTaeeG

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks