General

  • Target

    2024-11-14_33e64da9d491213f0c1dd5daca493038_bkransomware

  • Size

    1.3MB

  • Sample

    241114-m7anjaydjm

  • MD5

    33e64da9d491213f0c1dd5daca493038

  • SHA1

    c427671782f20d87095595dc13970326755c91a4

  • SHA256

    7134336a49f3fe4c5dd9cef7eb986d2b92f5d95041a8628c77b49a06d3f21979

  • SHA512

    d0ec27353f812b301fe2da04dd6a82094e9f96a49cd7b66776772c17945f44949fd2d0aa3b34dcc0210f8154dc98035919961cc040952af3d8f9497811326f00

  • SSDEEP

    12288:etOw6BaYMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:w6BiSkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      2024-11-14_33e64da9d491213f0c1dd5daca493038_bkransomware

    • Size

      1.3MB

    • MD5

      33e64da9d491213f0c1dd5daca493038

    • SHA1

      c427671782f20d87095595dc13970326755c91a4

    • SHA256

      7134336a49f3fe4c5dd9cef7eb986d2b92f5d95041a8628c77b49a06d3f21979

    • SHA512

      d0ec27353f812b301fe2da04dd6a82094e9f96a49cd7b66776772c17945f44949fd2d0aa3b34dcc0210f8154dc98035919961cc040952af3d8f9497811326f00

    • SSDEEP

      12288:etOw6BaYMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:w6BiSkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks