5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7 | Triage

Submit
Reports

Overview

overview

9

Static

static

5b58028057...le.exe

windows7_x64

9

5b58028057...le.exe

windows10_x64

9

Sharing

General

Target

5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7.sample
Size

62KB
Sample

210726-m4mnyb7hqa
MD5

3c31ed5362637ff3d5f94347396d753f
SHA1

f5664b367a841643728cd90d0cb61df9e58fa4d7
SHA256

5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7
SHA512

7a36eacbc05cbb1814455d1d1c7c9d2ae40f8f181c079255a0419b9defb6d34855c22ffc2fbbaecf8a7300b249a53dd9c44e074086e377870605dff9afff34fd

Score

9^/10

ransomware spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7.sample.exe

Resource

win7v20210408

ransomware spyware stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7.sample.exe

Resource

win10v20210410

ransomware spyware stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7.sample
- Size
  
  62KB
- MD5
  
  3c31ed5362637ff3d5f94347396d753f
- SHA1
  
  f5664b367a841643728cd90d0cb61df9e58fa4d7
- SHA256
  
  5b5802805784b265c40c8af163b465f1430c732c60dd1fbec80da95378ae45b7
- SHA512
  
  7a36eacbc05cbb1814455d1d1c7c9d2ae40f8f181c079255a0419b9defb6d34855c22ffc2fbbaecf8a7300b249a53dd9c44e074086e377870605dff9afff34fd
Score

9^/10

ransomware spyware stealer
- Deletes shadow copies
  Ransomware often targets backup files to inhibit system recovery.
  ransomware
- Modifies extensions of user files
  Ransomware generally changes the extension on encrypted files.
  ransomware
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File Deletion

Credential Access

Credentials in Files

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Inhibit System Recovery

Tasks

static1

behavioral1

ransomwarespywarestealer

behavioral2

ransomwarespywarestealer

© 2018-2024

Terms | Privacy