Overview

overview

7

Static

static

3

2024-07-10...re.exe

windows7-x64

7

2024-07-10...re.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-07-10_016a01b763f387cf116ff88488dcec05_bkransomware

  • Size

    214KB

  • Sample

    240710-pk1ybaxenm

  • MD5

    016a01b763f387cf116ff88488dcec05

  • SHA1

    a16d9493f69807c00dd0b1598918eb767cf3fc3f

  • SHA256

    67e44534bf0ad7c31b2519c88d8a6b8a8e9e1b320c57e4c73a7545b95a085fd9

  • SHA512

    8335ef358d0ed3813788286dc60971426d08b0991e080bb045be759a818cba63c6d8516b6314a0aff7712df23dcfbca2359438c96f65fe85bbdd83478842e65a

  • SSDEEP

    3072:ZhpAyazIlyazTOmfJ4wU98PK5z80Op8aHHfYSce/a1jDvWauhzBHJBSPaTRva6Zf:hZMazp42PSzOjgSrqjDsBHJgt6Ztv5

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2024-07-10_016a01b763f387cf116ff88488dcec05_bkransomware

    • Size

      214KB

    • MD5

      016a01b763f387cf116ff88488dcec05

    • SHA1

      a16d9493f69807c00dd0b1598918eb767cf3fc3f

    • SHA256

      67e44534bf0ad7c31b2519c88d8a6b8a8e9e1b320c57e4c73a7545b95a085fd9

    • SHA512

      8335ef358d0ed3813788286dc60971426d08b0991e080bb045be759a818cba63c6d8516b6314a0aff7712df23dcfbca2359438c96f65fe85bbdd83478842e65a

    • SSDEEP

      3072:ZhpAyazIlyazTOmfJ4wU98PK5z80Op8aHHfYSce/a1jDvWauhzBHJBSPaTRva6Zf:hZMazp42PSzOjgSrqjDsBHJgt6Ztv5

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks