Overview

overview

6

Static

static

1

1b968e9189...10.exe

windows7-x64

6

1b968e9189...10.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    1b968e9189f85ac131374959d6f13010.exe

  • Size

    314KB

  • Sample

    230202-vdyr9scc34

  • MD5

    1b968e9189f85ac131374959d6f13010

  • SHA1

    c2f77c0eadc24af9d6012a647709617a783282d8

  • SHA256

    f7f53cfeab4cc2cc46f018da63f0e888fd3dc4d75477fe7b090f908752a498d6

  • SHA512

    ee86cc1ad7092f55f80d7769f630459afd1c14f8251fa88a23cb89d21139b835b0174811212f61162c7dcde87a40a86bea61631f1a1758b1751fd2f66a7b954a

  • SSDEEP

    6144:3xKAs2fICenf8lB8AT0xaYAewSYn6NcD8S:3xKx2l

Score
6/10
spyware

Malware Config

Targets

    • Target

      1b968e9189f85ac131374959d6f13010.exe

    • Size

      314KB

    • MD5

      1b968e9189f85ac131374959d6f13010

    • SHA1

      c2f77c0eadc24af9d6012a647709617a783282d8

    • SHA256

      f7f53cfeab4cc2cc46f018da63f0e888fd3dc4d75477fe7b090f908752a498d6

    • SHA512

      ee86cc1ad7092f55f80d7769f630459afd1c14f8251fa88a23cb89d21139b835b0174811212f61162c7dcde87a40a86bea61631f1a1758b1751fd2f66a7b954a

    • SSDEEP

      6144:3xKAs2fICenf8lB8AT0xaYAewSYn6NcD8S:3xKx2l

    Score
    6/10
    spyware

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks