Resubmissions

14-03-2022 20:45

220314-zj49fsccc8 10

02-03-2022 21:06

220302-zxssksgcd2 7

General

  • Target

    inside3.exe

  • Size

    282KB

  • Sample

    220302-zxssksgcd2

  • MD5

    0238e5a4b41c4dcff77e8b01e88bed22

  • SHA1

    9c265d639104a538f708d5aaef6fcb9b61a8048f

  • SHA256

    a63d0da5401d3f5d28a9e8ac8c6a6fe7ba7eb7b1e1e60d1ec47a3eb7dd079808

  • SHA512

    4add1b607fdfd4159745a7ed1fb02543ce210b9e36996ea404c05fc491bce2471c452cbf0aad3de0b1f1f563ca23f843ef77d9d85ffc6828b6924c4fa34b4bac

Score
7/10

Malware Config

Targets

    • Target

      inside3.exe

    • Size

      282KB

    • MD5

      0238e5a4b41c4dcff77e8b01e88bed22

    • SHA1

      9c265d639104a538f708d5aaef6fcb9b61a8048f

    • SHA256

      a63d0da5401d3f5d28a9e8ac8c6a6fe7ba7eb7b1e1e60d1ec47a3eb7dd079808

    • SHA512

      4add1b607fdfd4159745a7ed1fb02543ce210b9e36996ea404c05fc491bce2471c452cbf0aad3de0b1f1f563ca23f843ef77d9d85ffc6828b6924c4fa34b4bac

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks