General

  • Target

    2024-06-12_fe30dee3443d612e8fd707c72667a0e1_bkransomware

  • Size

    918KB

  • Sample

    240612-n9ntlstgqe

  • MD5

    fe30dee3443d612e8fd707c72667a0e1

  • SHA1

    e52d0ba957c8efa2401bcde335df808cb3f3419a

  • SHA256

    6edf0c0fe4ad1c78367ba2aaab7147a95665ce0368005171a20d518d61a5a41d

  • SHA512

    bb5476467273ce7003b10f69b895e19fadd2141ca24851f07543f0e46414222da42232112033ba95831aebb22e29717b4d5b6079063315d88916d45e8801d36c

  • SSDEEP

    24576:DPixr78tS/6+q3d5+XjNTJmaEJdYLmvz8l99yea73pc:DqB7USdXpJmaSqoz8lOt73e

Malware Config

Targets

    • Target

      2024-06-12_fe30dee3443d612e8fd707c72667a0e1_bkransomware

    • Size

      918KB

    • MD5

      fe30dee3443d612e8fd707c72667a0e1

    • SHA1

      e52d0ba957c8efa2401bcde335df808cb3f3419a

    • SHA256

      6edf0c0fe4ad1c78367ba2aaab7147a95665ce0368005171a20d518d61a5a41d

    • SHA512

      bb5476467273ce7003b10f69b895e19fadd2141ca24851f07543f0e46414222da42232112033ba95831aebb22e29717b4d5b6079063315d88916d45e8801d36c

    • SSDEEP

      24576:DPixr78tS/6+q3d5+XjNTJmaEJdYLmvz8l99yea73pc:DqB7USdXpJmaSqoz8lOt73e

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks