Overview

overview

7

Static

static

3

2024-10-09...re.exe

windows7-x64

7

2024-10-09...re.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-10-09_3a0c0ec40f51babe8f15039f4c7a2f77_bkransomware

  • Size

    76KB

  • Sample

    241009-kawhmasfkh

  • MD5

    3a0c0ec40f51babe8f15039f4c7a2f77

  • SHA1

    58a11b84164730bbfd143e6205dbdc54274fdb6f

  • SHA256

    d7643010bf036b2a34468b3db9f2dad5ce82e065a0c89a24aa07e59d81081b53

  • SHA512

    b3989e53904363a6e589bbbc20c1779ff3834d946885a8454bcd514bc8f5a37c3fa06178818d181f7992ed974efe7cded33df833b39b873aaddcb64384b06bd5

  • SSDEEP

    1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTd:ZhpAyazIlyazTd

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      2024-10-09_3a0c0ec40f51babe8f15039f4c7a2f77_bkransomware

    • Size

      76KB

    • MD5

      3a0c0ec40f51babe8f15039f4c7a2f77

    • SHA1

      58a11b84164730bbfd143e6205dbdc54274fdb6f

    • SHA256

      d7643010bf036b2a34468b3db9f2dad5ce82e065a0c89a24aa07e59d81081b53

    • SHA512

      b3989e53904363a6e589bbbc20c1779ff3834d946885a8454bcd514bc8f5a37c3fa06178818d181f7992ed974efe7cded33df833b39b873aaddcb64384b06bd5

    • SSDEEP

      1536:Fc897UsWjcd9w+AyabjDbxE+MwmvlDuazTd:ZhpAyazIlyazTd

    Score
    7/10
    discoverypersistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks