General

  • Target

    2025-07-01_9ef9104791757109d77926154eda6f36_bkransomware_elex_rhadamanthys

  • Size

    95KB

  • Sample

    250701-jfgqzsdn4z

  • MD5

    9ef9104791757109d77926154eda6f36

  • SHA1

    5a64bdedb782348e230bd7e03c9c10261ba8dc98

  • SHA256

    5c19dcdd5d5481ed7a451b0b2ea433290a1884f1a87b093c02407c72376e9470

  • SHA512

    63c4495e1dcbcab936b2cf86bcb30477769579819e2d5817a9fcb925a2794710b5623eac130aa6301198f8853dc35f89cab9b6fe6baffed379f1aac35e40860a

  • SSDEEP

    1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlDuazT6qPCoowR68Edmw1:ZRpAyazIlyazT68oo/ux1

Malware Config

Targets

    • Target

      2025-07-01_9ef9104791757109d77926154eda6f36_bkransomware_elex_rhadamanthys

    • Size

      95KB

    • MD5

      9ef9104791757109d77926154eda6f36

    • SHA1

      5a64bdedb782348e230bd7e03c9c10261ba8dc98

    • SHA256

      5c19dcdd5d5481ed7a451b0b2ea433290a1884f1a87b093c02407c72376e9470

    • SHA512

      63c4495e1dcbcab936b2cf86bcb30477769579819e2d5817a9fcb925a2794710b5623eac130aa6301198f8853dc35f89cab9b6fe6baffed379f1aac35e40860a

    • SSDEEP

      1536:Fc8N7UsWjcd9w+AyabjDbxE+MwmvlDuazT6qPCoowR68Edmw1:ZRpAyazIlyazT68oo/ux1

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v16

Tasks