General

  • Target

    2024-06-13_b4eaa3646e411d1cde5c431571aca03d_bkransomware_karagany

  • Size

    677KB

  • Sample

    240613-a37fgs1erq

  • MD5

    b4eaa3646e411d1cde5c431571aca03d

  • SHA1

    9436706358c299eda7b2f9fd371fb5f5c376d29c

  • SHA256

    f45309ff02223298c150c039890e96e56252c95c8d0d62835a9758afe87b1ce9

  • SHA512

    cf1cc97b0a93c8e7a0f90dc12bbe4f694c2a801a485239b0ccdf368fb36fb5378546b0cb68b498b615897cb28fbe1e69fbb3d4f81bd0056db4a5cf503242b6f9

  • SSDEEP

    12288:FvXk1oFCrNDFKYmKIiirRGW2phzrvXuayM1J3AAlrAf0d83QC0OXxcpGHMkif:Vk1o8NDFKYmKOF0zr31JwAlcR3QC0OXw

Score
7/10

Malware Config

Targets

    • Target

      2024-06-13_b4eaa3646e411d1cde5c431571aca03d_bkransomware_karagany

    • Size

      677KB

    • MD5

      b4eaa3646e411d1cde5c431571aca03d

    • SHA1

      9436706358c299eda7b2f9fd371fb5f5c376d29c

    • SHA256

      f45309ff02223298c150c039890e96e56252c95c8d0d62835a9758afe87b1ce9

    • SHA512

      cf1cc97b0a93c8e7a0f90dc12bbe4f694c2a801a485239b0ccdf368fb36fb5378546b0cb68b498b615897cb28fbe1e69fbb3d4f81bd0056db4a5cf503242b6f9

    • SSDEEP

      12288:FvXk1oFCrNDFKYmKIiirRGW2phzrvXuayM1J3AAlrAf0d83QC0OXxcpGHMkif:Vk1o8NDFKYmKOF0zr31JwAlcR3QC0OXw

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks