Overview

overview

7

Static

static

58b8e4f9b3...c8.exe

windows7-x64

7

58b8e4f9b3...c8.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    58b8e4f9b339a78dcdde048e69dcaea97798fc30d40512ec2163ed105ebc11c8

  • Size

    964KB

  • Sample

    221011-z7x52sfab9

  • MD5

    6c93cd86301d02b7682c01caf5c77580

  • SHA1

    2a3ddadf603d110305e067cfa73e72db181f2038

  • SHA256

    58b8e4f9b339a78dcdde048e69dcaea97798fc30d40512ec2163ed105ebc11c8

  • SHA512

    b27718383d91435591f64d58657d3dbcb4c213d989941ce8de8610b39e9d1955d80461f0310f03e0d26b2c428988619ac63ca7bb16135c90ddb9af878d43cf68

  • SSDEEP

    24576:2W8yApUFkcXJ5YqPKtWk1M/E+kFc8qOpLzIMt6d:z8/SGc5jWWp8tc85BzIMtw

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      58b8e4f9b339a78dcdde048e69dcaea97798fc30d40512ec2163ed105ebc11c8

    • Size

      964KB

    • MD5

      6c93cd86301d02b7682c01caf5c77580

    • SHA1

      2a3ddadf603d110305e067cfa73e72db181f2038

    • SHA256

      58b8e4f9b339a78dcdde048e69dcaea97798fc30d40512ec2163ed105ebc11c8

    • SHA512

      b27718383d91435591f64d58657d3dbcb4c213d989941ce8de8610b39e9d1955d80461f0310f03e0d26b2c428988619ac63ca7bb16135c90ddb9af878d43cf68

    • SSDEEP

      24576:2W8yApUFkcXJ5YqPKtWk1M/E+kFc8qOpLzIMt6d:z8/SGc5jWWp8tc85BzIMtw

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks