Overview

overview

7

Static

static

f271533b85...f1.exe

windows7-x64

7

f271533b85...f1.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f271533b85195f6f7f3fc3f44dbae105d5b6ce86da0bb9ea55eba3f77700c2f1

  • Size

    1.7MB

  • Sample

    221128-rs3g8aee3v

  • MD5

    9afbfe102fd5f651c24a1e1d6692c20a

  • SHA1

    0e996b51506648fd6fb6e888531e5c447bf514d5

  • SHA256

    f271533b85195f6f7f3fc3f44dbae105d5b6ce86da0bb9ea55eba3f77700c2f1

  • SHA512

    d3b8db7a72b12b8e2e063d483e0d5007858949283cf84ba217a80e992934e99cf2072cd908e84ace63193ea95d38ac0d54948bc395e569b5e9092478be7de98e

  • SSDEEP

    49152:WnqmARra0Ee/k/PlvOsXNAmpZ3d5UK3dvPNJl36d3SLANOossJyj:8RFnossUj

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      f271533b85195f6f7f3fc3f44dbae105d5b6ce86da0bb9ea55eba3f77700c2f1

    • Size

      1.7MB

    • MD5

      9afbfe102fd5f651c24a1e1d6692c20a

    • SHA1

      0e996b51506648fd6fb6e888531e5c447bf514d5

    • SHA256

      f271533b85195f6f7f3fc3f44dbae105d5b6ce86da0bb9ea55eba3f77700c2f1

    • SHA512

      d3b8db7a72b12b8e2e063d483e0d5007858949283cf84ba217a80e992934e99cf2072cd908e84ace63193ea95d38ac0d54948bc395e569b5e9092478be7de98e

    • SSDEEP

      49152:WnqmARra0Ee/k/PlvOsXNAmpZ3d5UK3dvPNJl36d3SLANOossJyj:8RFnossUj

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks