General

  • Target

    2024-10-26_b2914d84986ceb354e53ac91090de882_bkransomware

  • Size

    1.7MB

  • Sample

    241026-dn1k6szerp

  • MD5

    b2914d84986ceb354e53ac91090de882

  • SHA1

    8b1523d55c3797c769d4489a9c253c3f7dbb41ee

  • SHA256

    14d4b7fd65c691abbd871ed0d3a6fc3d40fea7071889f18a0d0ce8241d0b00f6

  • SHA512

    bc6132566ac0a45c37430c82d998485ee4fb74c628aace44017d691052c2a40e527c264970e1d7990c97beedb81b9337661bff4f22f7a6d2510d1a5939424116

  • SSDEEP

    12288:gtOw6BalGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPh:O6B1t/sBlDqgZQd6XKtiMJYiPU

Malware Config

Targets

    • Target

      2024-10-26_b2914d84986ceb354e53ac91090de882_bkransomware

    • Size

      1.7MB

    • MD5

      b2914d84986ceb354e53ac91090de882

    • SHA1

      8b1523d55c3797c769d4489a9c253c3f7dbb41ee

    • SHA256

      14d4b7fd65c691abbd871ed0d3a6fc3d40fea7071889f18a0d0ce8241d0b00f6

    • SHA512

      bc6132566ac0a45c37430c82d998485ee4fb74c628aace44017d691052c2a40e527c264970e1d7990c97beedb81b9337661bff4f22f7a6d2510d1a5939424116

    • SSDEEP

      12288:gtOw6BalGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPh:O6B1t/sBlDqgZQd6XKtiMJYiPU

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks