Overview

overview

7

Static

static

13ca08c930...17.exe

windows7-x64

7

13ca08c930...17.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13ca08c9309223032b322af3f00f54ca172febddf3b25e6541f6acde541f3617

  • Size

    2.1MB

  • Sample

    221128-rrxkksed5t

  • MD5

    6c8086bf67244cb7489a5cd48d8f4959

  • SHA1

    51ded1e8e91d18c233a072c2bbe8da553215a8d0

  • SHA256

    13ca08c9309223032b322af3f00f54ca172febddf3b25e6541f6acde541f3617

  • SHA512

    abc8a26fe5e79a2aa02aad430b5bc09d153fe48f4c72e83cb715a927e2b809bad021967ba0b82a40b461d136a95b3a939f3fd975aa82e51a637f67d2f6c0f28f

  • SSDEEP

    49152:DGIlkxEeFgBlo6Xn29FeXW6pBjMkb08EDJ7POOMlbpZ3d5UK3dvPNJl36d3SLATa:DNlkSeFgBSIwkb0hVIossLsmU

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      13ca08c9309223032b322af3f00f54ca172febddf3b25e6541f6acde541f3617

    • Size

      2.1MB

    • MD5

      6c8086bf67244cb7489a5cd48d8f4959

    • SHA1

      51ded1e8e91d18c233a072c2bbe8da553215a8d0

    • SHA256

      13ca08c9309223032b322af3f00f54ca172febddf3b25e6541f6acde541f3617

    • SHA512

      abc8a26fe5e79a2aa02aad430b5bc09d153fe48f4c72e83cb715a927e2b809bad021967ba0b82a40b461d136a95b3a939f3fd975aa82e51a637f67d2f6c0f28f

    • SSDEEP

      49152:DGIlkxEeFgBlo6Xn29FeXW6pBjMkb08EDJ7POOMlbpZ3d5UK3dvPNJl36d3SLATa:DNlkSeFgBSIwkb0hVIossLsmU

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks