General

  • Target

    2024-06-12_52a066af5f62ea6a5ff6c084b7c61811_bkransomware

  • Size

    135KB

  • Sample

    240612-xf36wawbjc

  • MD5

    52a066af5f62ea6a5ff6c084b7c61811

  • SHA1

    20c3b5bf184ad95a6a9cfca9678b3561b69664da

  • SHA256

    39d2e0c1787dad25db479c2f4f8046092c2073d503b7a6e434a6b9f9c3ba4415

  • SHA512

    d87c3554008296bebddcf190a6a3a53c9447f7f0a47cae5852d7fdd1e58b3eecaf40341563e1585a0b927fa0ee6f1b867abaf1f48e8a6685bac43383ee47fdb2

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTCQeekDEyKRzdRA1hX76D8j7iLcUo08:ZhpAyazIlyazTAeyKG1hXOhmPIW

Malware Config

Targets

    • Target

      2024-06-12_52a066af5f62ea6a5ff6c084b7c61811_bkransomware

    • Size

      135KB

    • MD5

      52a066af5f62ea6a5ff6c084b7c61811

    • SHA1

      20c3b5bf184ad95a6a9cfca9678b3561b69664da

    • SHA256

      39d2e0c1787dad25db479c2f4f8046092c2073d503b7a6e434a6b9f9c3ba4415

    • SHA512

      d87c3554008296bebddcf190a6a3a53c9447f7f0a47cae5852d7fdd1e58b3eecaf40341563e1585a0b927fa0ee6f1b867abaf1f48e8a6685bac43383ee47fdb2

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTCQeekDEyKRzdRA1hX76D8j7iLcUo08:ZhpAyazIlyazTAeyKG1hXOhmPIW

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks