General

  • Target

    2024-11-14_7c887bfb9dd4fe59b43236d3be3abf7b_bkransomware_karagany

  • Size

    1.3MB

  • Sample

    241114-nnyfxsslgq

  • MD5

    7c887bfb9dd4fe59b43236d3be3abf7b

  • SHA1

    c655f8ed1e7c47d22c2e80e02fc71c9b7a08939c

  • SHA256

    a5249c50b6093cabf63fd51425ee01024d22bf5be50d166c98ec3e129eeaa806

  • SHA512

    8d440358e86415e555461e18d5c697716b5daaa060f0b9e3f82966abe17737301b25b20b438171c5605c6e0618e99a5aa7ab6b1b71aff84497a1b63be1ef10ce

  • SSDEEP

    12288:AvXk1nMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:Uk1MSkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      2024-11-14_7c887bfb9dd4fe59b43236d3be3abf7b_bkransomware_karagany

    • Size

      1.3MB

    • MD5

      7c887bfb9dd4fe59b43236d3be3abf7b

    • SHA1

      c655f8ed1e7c47d22c2e80e02fc71c9b7a08939c

    • SHA256

      a5249c50b6093cabf63fd51425ee01024d22bf5be50d166c98ec3e129eeaa806

    • SHA512

      8d440358e86415e555461e18d5c697716b5daaa060f0b9e3f82966abe17737301b25b20b438171c5605c6e0618e99a5aa7ab6b1b71aff84497a1b63be1ef10ce

    • SSDEEP

      12288:AvXk1nMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:Uk1MSkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks