66211dee4944bfe1d0055436a1ef9e3ca09cec2d004fec3b5257970c789e7ae3 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

2024-06-24...re.exe

windows7-x64

7

2024-06-24...re.exe

windows10-2004-x64

7

Sharing

General

Target

2024-06-24_d389ee31a6bdf9b03ebf1a895d8865ab_bkransomware
Size

712KB
Sample

240624-pkn9hsvgrj
MD5

d389ee31a6bdf9b03ebf1a895d8865ab
SHA1

261740308ea96a98cd217db55daa43418f01b9da
SHA256

66211dee4944bfe1d0055436a1ef9e3ca09cec2d004fec3b5257970c789e7ae3
SHA512

e0b2efb69bde13dce294efe9b114d6175312acfa516556ba63076060b4c5b16ca1c894103e2656750d863da4f4dc0b2f975233e0096d6c9b0f9b32a212cf6b81
SSDEEP

12288:ntOw6BatcV3VfCfHcqNS0zKepmlDlpVfjp8EizX+AuV27snt5odJMsf:d6BbVg9N9JMlDlfjRiVuVsWt5MJMsf

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2024-06-24_d389ee31a6bdf9b03ebf1a895d8865ab_bkransomware.exe

Resource

win7-20240419-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-24_d389ee31a6bdf9b03ebf1a895d8865ab_bkransomware.exe

Resource

win10v2004-20240508-en

spyware stealer

windows10-2004-x64

14 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-24_d389ee31a6bdf9b03ebf1a895d8865ab_bkransomware
- Size
  
  712KB
- MD5
  
  d389ee31a6bdf9b03ebf1a895d8865ab
- SHA1
  
  261740308ea96a98cd217db55daa43418f01b9da
- SHA256
  
  66211dee4944bfe1d0055436a1ef9e3ca09cec2d004fec3b5257970c789e7ae3
- SHA512
  
  e0b2efb69bde13dce294efe9b114d6175312acfa516556ba63076060b4c5b16ca1c894103e2656750d863da4f4dc0b2f975233e0096d6c9b0f9b32a212cf6b81
- SSDEEP
  
  12288:ntOw6BatcV3VfCfHcqNS0zKepmlDlpVfjp8EizX+AuV27snt5odJMsf:d6BbVg9N9JMlDlfjRiVuVsWt5MJMsf
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy