Overview

overview

7

Static

static

3

2024-08-22...re.exe

windows7-x64

7

2024-08-22...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-08-22_1ba40881ebca925560490936326b6646_bkransomware

  • Size

    321KB

  • Sample

    240822-dxz11awdld

  • MD5

    1ba40881ebca925560490936326b6646

  • SHA1

    d3bddb2c789e41dcd1177e51029ac1c1d96ce149

  • SHA256

    647e76c1886e506afee41c40a57610608ea5f4b0b90297885a397711711885a4

  • SHA512

    0de5cdd3ea6651eef5a32c928013d7bf7e56a2f8cb841ec688c07c515beb6a48f6e05d9ecf042a765bcd114595406a1d7398108177b0a7a21ace0cb338f1b443

  • SSDEEP

    6144:hZMazEalAbpeqw2bquN2W67jeWnBitjt2TwA0mgRoitrPna4Y:hS0NKbpTw2bUbZnEvC0HRlPa4Y

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2024-08-22_1ba40881ebca925560490936326b6646_bkransomware

    • Size

      321KB

    • MD5

      1ba40881ebca925560490936326b6646

    • SHA1

      d3bddb2c789e41dcd1177e51029ac1c1d96ce149

    • SHA256

      647e76c1886e506afee41c40a57610608ea5f4b0b90297885a397711711885a4

    • SHA512

      0de5cdd3ea6651eef5a32c928013d7bf7e56a2f8cb841ec688c07c515beb6a48f6e05d9ecf042a765bcd114595406a1d7398108177b0a7a21ace0cb338f1b443

    • SSDEEP

      6144:hZMazEalAbpeqw2bquN2W67jeWnBitjt2TwA0mgRoitrPna4Y:hS0NKbpTw2bUbZnEvC0HRlPa4Y

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks