Overview

overview

7

Static

static

3

99da2ea7d7...a0.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    99da2ea7d73be3ae8f0a2e8bf043f590c31ab39af87a4a44dfa1b5728bea63a0.exe

  • Size

    17.6MB

  • Sample

    221006-kspg2ahaer

  • MD5

    cd95625644125978dd27c5b97141b5d4

  • SHA1

    6453e25eb436e710aa6287aabe5711053e11521b

  • SHA256

    99da2ea7d73be3ae8f0a2e8bf043f590c31ab39af87a4a44dfa1b5728bea63a0

  • SHA512

    a98b4554d5c652d048936c1a416773f412a74a2d68a57f4643e0d4b92bc458e7c820dc945ad118da43f22564ec8b377f5efb31c0761e99cbe723cfec4086a287

  • SSDEEP

    393216:rkZU4wT1/BpX8Lv95H1sPUNXl24/IjOLAqEz:gi4wp/BpX8LvLvN1pIjOL5Ez

Score
7/10
pyinstallerspyware

Malware Config

Targets

    • Target

      99da2ea7d73be3ae8f0a2e8bf043f590c31ab39af87a4a44dfa1b5728bea63a0.exe

    • Size

      17.6MB

    • MD5

      cd95625644125978dd27c5b97141b5d4

    • SHA1

      6453e25eb436e710aa6287aabe5711053e11521b

    • SHA256

      99da2ea7d73be3ae8f0a2e8bf043f590c31ab39af87a4a44dfa1b5728bea63a0

    • SHA512

      a98b4554d5c652d048936c1a416773f412a74a2d68a57f4643e0d4b92bc458e7c820dc945ad118da43f22564ec8b377f5efb31c0761e99cbe723cfec4086a287

    • SSDEEP

      393216:rkZU4wT1/BpX8Lv95H1sPUNXl24/IjOLAqEz:gi4wp/BpX8LvLvN1pIjOL5Ez

    Score
    7/10
    spyware

    • Loads dropped DLL

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware
    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks