General

  • Target

    2024-06-14_34f6b118625cc204ccd63c1037d57f2a_bkransomware

  • Size

    71KB

  • Sample

    240614-jd68vstgmk

  • MD5

    34f6b118625cc204ccd63c1037d57f2a

  • SHA1

    6528eab459b72912c534ac9529eb9f644a1570e8

  • SHA256

    ca9703ca79e64d274c5f391f69d96c16d4808509ee551ebb0e528dc6571df2d0

  • SHA512

    6c740660fdca20115e262d3f6f58e518cf8652dd2e1400ec128e874f7371bcce8d3e6b4ae675f5a2e033d6ae3403860bddd55aa21ad90760ec9a3dce73e3a754

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTg:ZhpAyazIlyazTg

Malware Config

Targets

    • Target

      2024-06-14_34f6b118625cc204ccd63c1037d57f2a_bkransomware

    • Size

      71KB

    • MD5

      34f6b118625cc204ccd63c1037d57f2a

    • SHA1

      6528eab459b72912c534ac9529eb9f644a1570e8

    • SHA256

      ca9703ca79e64d274c5f391f69d96c16d4808509ee551ebb0e528dc6571df2d0

    • SHA512

      6c740660fdca20115e262d3f6f58e518cf8652dd2e1400ec128e874f7371bcce8d3e6b4ae675f5a2e033d6ae3403860bddd55aa21ad90760ec9a3dce73e3a754

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTg:ZhpAyazIlyazTg

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks