General

  • Target

    2024-11-14_9911e9128b7c1eb101e7df0b80c290be_bkransomware_karagany

  • Size

    677KB

  • Sample

    241114-m8ry7sskaq

  • MD5

    9911e9128b7c1eb101e7df0b80c290be

  • SHA1

    d56b9e0f3b96daa07d1d6f504908a597ec927f1d

  • SHA256

    53004dbe7fc717bb168b0ee6f806f2da4110178212f40bbf203c817386235a4f

  • SHA512

    81ff955ebca4100cc4717f61ef7aa462e978a5065bf1de569dffd76fde316f77f5f407c7840c18afb422ff732c0d223c6eaa39a83409b9434aecbf7ede7930ba

  • SSDEEP

    12288:PvXk13fqx0MsTe7IArn6xI51Ahl/9EG5/0Ty2LEGQ8WCorG44JmLJFK9yy:3k1SP+wIk6xI5ul/9EgnQQ/CtJIJFeyy

Malware Config

Targets

    • Target

      2024-11-14_9911e9128b7c1eb101e7df0b80c290be_bkransomware_karagany

    • Size

      677KB

    • MD5

      9911e9128b7c1eb101e7df0b80c290be

    • SHA1

      d56b9e0f3b96daa07d1d6f504908a597ec927f1d

    • SHA256

      53004dbe7fc717bb168b0ee6f806f2da4110178212f40bbf203c817386235a4f

    • SHA512

      81ff955ebca4100cc4717f61ef7aa462e978a5065bf1de569dffd76fde316f77f5f407c7840c18afb422ff732c0d223c6eaa39a83409b9434aecbf7ede7930ba

    • SSDEEP

      12288:PvXk13fqx0MsTe7IArn6xI51Ahl/9EG5/0Ty2LEGQ8WCorG44JmLJFK9yy:3k1SP+wIk6xI5ul/9EgnQQ/CtJIJFeyy

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks