Overview

overview

7

Static

static

file.exe

windows7-x64

7

file.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    file.exe

  • Size

    6.8MB

  • Sample

    221031-krlpraadh3

  • MD5

    86ddd01fcb8b0f19449603a0f87f7d12

  • SHA1

    139a9000fca19d95501f7bc44564ad5c7abfb076

  • SHA256

    6ad4ad7af5c190c1900895636dd7389c26aa4def32e9ef071644355683bd153c

  • SHA512

    0622e5a8575bc326b7d119d2624403f217f376b92cfdbe1fd6097bf8c984cff681669dc174c7fb4cf9dc92ecd06647b8019d1f7736902ed53688c06af559f971

  • SSDEEP

    24576:XQ1YBpjIlIMhAVMzVTj6yynktj8KDRefjX6Zzbn4Bx8kiATYQup+6BdiPOkhOFxt:wt

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      file.exe

    • Size

      6.8MB

    • MD5

      86ddd01fcb8b0f19449603a0f87f7d12

    • SHA1

      139a9000fca19d95501f7bc44564ad5c7abfb076

    • SHA256

      6ad4ad7af5c190c1900895636dd7389c26aa4def32e9ef071644355683bd153c

    • SHA512

      0622e5a8575bc326b7d119d2624403f217f376b92cfdbe1fd6097bf8c984cff681669dc174c7fb4cf9dc92ecd06647b8019d1f7736902ed53688c06af559f971

    • SSDEEP

      24576:XQ1YBpjIlIMhAVMzVTj6yynktj8KDRefjX6Zzbn4Bx8kiATYQup+6BdiPOkhOFxt:wt

    Score
    7/10
    discoveryspywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks