Overview

overview

7

Static

static

0.exe

windows7_x64

7

0.exe

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0.exe

  • Size

    92KB

  • Sample

    200710-g1bq349h2s

  • MD5

    1f1f729ed90fd59ceb8f3c75e40cf5c3

  • SHA1

    561db88fe754068dcf0a266b45dbd6bdecef67aa

  • SHA256

    309911eeb73e0a28aa50c3e4a51121db47068398b9284432e37e6d2d44c654a4

  • SHA512

    4e7773b07bed429d54b9bfec034200e0213304482cff29904c04f28fd47722e0fbffaaa46461ce822e3f634431680ecd1690fbac883fef6667c40afc0b3294dd

Score
7/10
spyware

Malware Config

Targets

    • Target

      0.exe

    • Size

      92KB

    • MD5

      1f1f729ed90fd59ceb8f3c75e40cf5c3

    • SHA1

      561db88fe754068dcf0a266b45dbd6bdecef67aa

    • SHA256

      309911eeb73e0a28aa50c3e4a51121db47068398b9284432e37e6d2d44c654a4

    • SHA512

      4e7773b07bed429d54b9bfec034200e0213304482cff29904c04f28fd47722e0fbffaaa46461ce822e3f634431680ecd1690fbac883fef6667c40afc0b3294dd

    Score
    7/10
    spyware

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks