Overview

overview

7

Static

static

d62b8ff3de...35.exe

windows7_x64

1

d62b8ff3de...35.exe

windows10_x64

7

Resubmissions

16-11-2022 10:41

221116-mq9fjaeb31 8

07-09-2020 18:51

200907-pl7ygfpqxs 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d62b8ff3de422cdacdc3bc804990c2c12a0b3675c9c98e38f5788b693ec5ff35.zip

  • Size

    32KB

  • Sample

    200907-pl7ygfpqxs

  • MD5

    c12aca276815a42658d5fc8479766bf0

  • SHA1

    8d411a51c5c78dbc2cfcf6f0ed442b5f8dcf0cc1

  • SHA256

    6e765cbef6d47cb4e9ed599b360156c700e5f9f38eae31cb081595e1791c54af

  • SHA512

    503d31f03d8ffcfa927535bfb47321a14e1779f026a1ade4f02f2dee723aaa0a85905fb256bf7c4a3376eb027c71c4af11aa0532d8904e86f6b79799a8430bbd

Score
7/10
persistencespyware

Malware Config

Targets

    • Target

      d62b8ff3de422cdacdc3bc804990c2c12a0b3675c9c98e38f5788b693ec5ff35

    • Size

      76KB

    • MD5

      a4782bbfe7300e51e2e3f962fe9ea33f

    • SHA1

      9b5facdba4a5dc8395874e3fd91b983048157f28

    • SHA256

      d62b8ff3de422cdacdc3bc804990c2c12a0b3675c9c98e38f5788b693ec5ff35

    • SHA512

      544a15f6039d1cac735f15d9c1a6504e8ac9836b2c5fa02f2620ed570bbe98c87950d389928927c0fa42b6c3223709db52af869ba491930370cd9757538d66d9

    Score
    7/10
    spywarepersistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spyware

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks