Overview

overview

7

Static

static

e5544a6072...74.exe

windows7-x64

7

e5544a6072...74.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e5544a6072da387c9c1b4d8b4103693acc0a5d6875abd9be5946e7cdaa3c7374

  • Size

    1.7MB

  • Sample

    221128-rt2x3see8z

  • MD5

    4f7fa9bd26fea8adf1cec84bbb1a0bf6

  • SHA1

    b90d92c84e7f411b97a604ea5011a7b9036f6d77

  • SHA256

    e5544a6072da387c9c1b4d8b4103693acc0a5d6875abd9be5946e7cdaa3c7374

  • SHA512

    3ba71be9cd3bd78e837086dca22b08a966f502590107263292df3c77089da9e7497f7000ed76bde8d889a87ed595f0c8d24d546707f672fc51611423bb5bd6a7

  • SSDEEP

    49152:NnqmARra0Ee/k/PlvOsXNAmpZ3d5UK3dvPNJl36d3SLANOossJFX:nRFnossrX

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      e5544a6072da387c9c1b4d8b4103693acc0a5d6875abd9be5946e7cdaa3c7374

    • Size

      1.7MB

    • MD5

      4f7fa9bd26fea8adf1cec84bbb1a0bf6

    • SHA1

      b90d92c84e7f411b97a604ea5011a7b9036f6d77

    • SHA256

      e5544a6072da387c9c1b4d8b4103693acc0a5d6875abd9be5946e7cdaa3c7374

    • SHA512

      3ba71be9cd3bd78e837086dca22b08a966f502590107263292df3c77089da9e7497f7000ed76bde8d889a87ed595f0c8d24d546707f672fc51611423bb5bd6a7

    • SSDEEP

      49152:NnqmARra0Ee/k/PlvOsXNAmpZ3d5UK3dvPNJl36d3SLANOossJFX:nRFnossrX

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Tasks