General

  • Target

    2024-06-14_36e94e99deedc342c979d4fa8c93554b_bkransomware

  • Size

    74KB

  • Sample

    240614-jeev1atgmr

  • MD5

    36e94e99deedc342c979d4fa8c93554b

  • SHA1

    e34f81ca40b3dd6086b2b29d7ab57d2c4c979492

  • SHA256

    381cb5f991db055dfbd67b724c036b1498f8a91eb8be1f51439f4a56e3bd7e3a

  • SHA512

    1aa636ce8cd153ed0609855ad610946b6d0c40479aad6c1a96c1d3d9cb4948800e5b70337e5ce185d1e8521d0992ccc38e44f8c5498759382ca1394dfd4a166f

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTGKmjOq:ZhpAyazIlyazTGK+Oq

Malware Config

Targets

    • Target

      2024-06-14_36e94e99deedc342c979d4fa8c93554b_bkransomware

    • Size

      74KB

    • MD5

      36e94e99deedc342c979d4fa8c93554b

    • SHA1

      e34f81ca40b3dd6086b2b29d7ab57d2c4c979492

    • SHA256

      381cb5f991db055dfbd67b724c036b1498f8a91eb8be1f51439f4a56e3bd7e3a

    • SHA512

      1aa636ce8cd153ed0609855ad610946b6d0c40479aad6c1a96c1d3d9cb4948800e5b70337e5ce185d1e8521d0992ccc38e44f8c5498759382ca1394dfd4a166f

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTGKmjOq:ZhpAyazIlyazTGK+Oq

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks