General

  • Target

    2024-11-14_e9d9d3336e1d11af9dd7e666f3dea3e6_bkransomware

  • Size

    1.3MB

  • Sample

    241114-m88lysydlm

  • MD5

    e9d9d3336e1d11af9dd7e666f3dea3e6

  • SHA1

    f1b7d535c95dcb36d4a93154fad4d495a423a7b8

  • SHA256

    62e822fefb6e682011b55a92a51ec7b8118828660a587fad3a635601326cc16b

  • SHA512

    dec0514efb260fb01a4695de2aa94bc791c4f1e298a72ec1e2a61ae2fe94d08a8833e7aceb4012cf51e195736041b41f8dbb0b9498814462f9e533e2dbc39173

  • SSDEEP

    12288:WtOw6BaNMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:o6BdSkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      2024-11-14_e9d9d3336e1d11af9dd7e666f3dea3e6_bkransomware

    • Size

      1.3MB

    • MD5

      e9d9d3336e1d11af9dd7e666f3dea3e6

    • SHA1

      f1b7d535c95dcb36d4a93154fad4d495a423a7b8

    • SHA256

      62e822fefb6e682011b55a92a51ec7b8118828660a587fad3a635601326cc16b

    • SHA512

      dec0514efb260fb01a4695de2aa94bc791c4f1e298a72ec1e2a61ae2fe94d08a8833e7aceb4012cf51e195736041b41f8dbb0b9498814462f9e533e2dbc39173

    • SSDEEP

      12288:WtOw6BaNMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:o6BdSkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks