Overview

overview

7

Static

static

securefile.exe

windows7_x64

5

securefile.exe

windows10_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    securefile.exe

  • Size

    672KB

  • Sample

    201023-vzs73vn832

  • MD5

    2840288c34a6fe8b9ff0dddc96c8f319

  • SHA1

    603427314dd2c13f3ee19571f892675ce65843d5

  • SHA256

    a88f94d1c96b0224ac11dd7bcc922173877b9f6a9442b083c3fdca3d40dd1c65

  • SHA512

    ed463b6656176db4b51814f8be0b9ed6491c35b5714e5a122aa7d908f8a0b2f05ca5f7e29a36b8c473a0346cd85cdefcad60d6d866f709567e4387831d547af9

Score
7/10
spyware

Malware Config

Targets

    • Target

      securefile.exe

    • Size

      672KB

    • MD5

      2840288c34a6fe8b9ff0dddc96c8f319

    • SHA1

      603427314dd2c13f3ee19571f892675ce65843d5

    • SHA256

      a88f94d1c96b0224ac11dd7bcc922173877b9f6a9442b083c3fdca3d40dd1c65

    • SHA512

      ed463b6656176db4b51814f8be0b9ed6491c35b5714e5a122aa7d908f8a0b2f05ca5f7e29a36b8c473a0346cd85cdefcad60d6d866f709567e4387831d547af9

    Score
    7/10
    spyware

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spyware

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks