General

  • Target

    2024-06-12_90e2ae73ac59c172acc479e13aaaf391_bkransomware

  • Size

    656KB

  • Sample

    240612-tftqna1bng

  • MD5

    90e2ae73ac59c172acc479e13aaaf391

  • SHA1

    59195314ebf6caaedb73f91265cc0e738511179a

  • SHA256

    c3182d03af730143424e7161a86b52739bc3d8edcd0a431d2105514e9ee726de

  • SHA512

    699fcd777650e56e2c4335c4d31e3916c072a918af77e5ea97cdd17a21b03d22691d7ea602b37249f8127740b20f3ee02490e24b999aee394f882d69dfcfbaad

  • SSDEEP

    12288:hS0Yz684yJBzcZc6Ez7l51PIYnpUXpF6v2NXux+b4yuw69wwxAXVSu:DYzoEz71QYnpmtNXu4QRliV

Malware Config

Targets

    • Target

      2024-06-12_90e2ae73ac59c172acc479e13aaaf391_bkransomware

    • Size

      656KB

    • MD5

      90e2ae73ac59c172acc479e13aaaf391

    • SHA1

      59195314ebf6caaedb73f91265cc0e738511179a

    • SHA256

      c3182d03af730143424e7161a86b52739bc3d8edcd0a431d2105514e9ee726de

    • SHA512

      699fcd777650e56e2c4335c4d31e3916c072a918af77e5ea97cdd17a21b03d22691d7ea602b37249f8127740b20f3ee02490e24b999aee394f882d69dfcfbaad

    • SSDEEP

      12288:hS0Yz684yJBzcZc6Ez7l51PIYnpUXpF6v2NXux+b4yuw69wwxAXVSu:DYzoEz71QYnpmtNXu4QRliV

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks