Resubmissions

09-11-2020 08:05

201109-tr9dpdpf8a 8

09-11-2020 08:01

201109-1l52bhwpfe 8

General

  • Target

    8892709206b1488a8859080c914f05419d1f094148bacec1abe2f1b18a0ec7b1.bin.sample

  • Size

    966KB

  • Sample

    201109-1l52bhwpfe

  • MD5

    a70c0b2b2f978a488216909f18b9a942

  • SHA1

    8529c643ccc52008504baf7b55e0d37f8081fd7a

  • SHA256

    8892709206b1488a8859080c914f05419d1f094148bacec1abe2f1b18a0ec7b1

  • SHA512

    4e36d64233226595a2271381b6417d2e294001d98dfe21db88adad40aca205c5c2928506955d24d132fef0ee725571b96d0f65b6a423e39e080f73846ffab5ad

Malware Config

Targets

    • Target

      8892709206b1488a8859080c914f05419d1f094148bacec1abe2f1b18a0ec7b1.bin.sample

    • Size

      966KB

    • MD5

      a70c0b2b2f978a488216909f18b9a942

    • SHA1

      8529c643ccc52008504baf7b55e0d37f8081fd7a

    • SHA256

      8892709206b1488a8859080c914f05419d1f094148bacec1abe2f1b18a0ec7b1

    • SHA512

      4e36d64233226595a2271381b6417d2e294001d98dfe21db88adad40aca205c5c2928506955d24d132fef0ee725571b96d0f65b6a423e39e080f73846ffab5ad

    Score
    8/10
    • Modifies extensions of user files

      Ransomware generally changes the extension on encrypted files.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Matrix ATT&CK v6

Credential Access

Credentials in Files

1
T1081

Collection

Data from Local System

1
T1005

Tasks