General

  • Target

    2024-11-14_28aeec73590c0eec87b4a25a84567145_bkransomware

  • Size

    1.3MB

  • Sample

    241114-n7rgqayfrc

  • MD5

    28aeec73590c0eec87b4a25a84567145

  • SHA1

    6d5eb471d01c42c721bfc3594859df166ce1e019

  • SHA256

    22ed373ffac459c72b4c551e7ed94278f26d0508e00bf8cd74092020c1ec5b55

  • SHA512

    dda42e47573fe7dd15fd68d169967385ee723aa4a8b85519eff21c998535e021575ef5d6ed423e95505bc9b1cff7edbd31573348c68604558559c4086b34dd88

  • SSDEEP

    12288:ttOw6BaPMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:36BTSkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      2024-11-14_28aeec73590c0eec87b4a25a84567145_bkransomware

    • Size

      1.3MB

    • MD5

      28aeec73590c0eec87b4a25a84567145

    • SHA1

      6d5eb471d01c42c721bfc3594859df166ce1e019

    • SHA256

      22ed373ffac459c72b4c551e7ed94278f26d0508e00bf8cd74092020c1ec5b55

    • SHA512

      dda42e47573fe7dd15fd68d169967385ee723aa4a8b85519eff21c998535e021575ef5d6ed423e95505bc9b1cff7edbd31573348c68604558559c4086b34dd88

    • SSDEEP

      12288:ttOw6BaPMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:36BTSkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks