Overview

overview

7

Static

static

3

2024-09-30...re.exe

windows7-x64

7

2024-09-30...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-09-30_21917f673a62629426a41d47f7068ee9_bkransomware

  • Size

    71KB

  • Sample

    240930-mfn2vazdlj

  • MD5

    21917f673a62629426a41d47f7068ee9

  • SHA1

    68bbf5a98e6bc70cf99d9fa7da2404531399fcac

  • SHA256

    0fcab2b5499382dd24687acc72b1881cdad4fb76b29f92f48d86996739f7a5cd

  • SHA512

    edc5f081a17b6df043c39769c647ff9f13433d66ba95a2d389458f1bff94b120dc750a0a7611df85152822b716acda8e0de413a62f792fb47502b0bccc1a4238

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTz:ZhpAyazIlyazTz

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2024-09-30_21917f673a62629426a41d47f7068ee9_bkransomware

    • Size

      71KB

    • MD5

      21917f673a62629426a41d47f7068ee9

    • SHA1

      68bbf5a98e6bc70cf99d9fa7da2404531399fcac

    • SHA256

      0fcab2b5499382dd24687acc72b1881cdad4fb76b29f92f48d86996739f7a5cd

    • SHA512

      edc5f081a17b6df043c39769c647ff9f13433d66ba95a2d389458f1bff94b120dc750a0a7611df85152822b716acda8e0de413a62f792fb47502b0bccc1a4238

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTz:ZhpAyazIlyazTz

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks