Overview

overview

7

Static

static

3

LoaderFixer.exe

windows7-x64

7

LoaderFixer.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LoaderFixer.exe

  • Size

    17.7MB

  • Sample

    230205-f4ysmabf4z

  • MD5

    a518234ee9320307559770be505c5da3

  • SHA1

    c58f1d5c9718bc340fb3f2a270a9200db29ac339

  • SHA256

    d68af7d58d8514cebc01250af1c0fcdeb6142df3320ff34e48280d56d6af37f8

  • SHA512

    c89dc340920688af1eb2227bec7a0d7b6d935536b1276cbfb615bcdff1cef5f0089261c9d73b33108494f65cf351ac8e82439466db94a311f8247dde2f4f2659

  • SSDEEP

    393216:Lu7L/dWBb+4hQenSyY+k4tOJCEDd/m3pCZkVRiEFT7bfIGy:LCL0N+4XY4tuCEDdKCZkVRiS7kT

Score
7/10
pyinstallerspywarestealer

Malware Config

Targets

    • Target

      LoaderFixer.exe

    • Size

      17.7MB

    • MD5

      a518234ee9320307559770be505c5da3

    • SHA1

      c58f1d5c9718bc340fb3f2a270a9200db29ac339

    • SHA256

      d68af7d58d8514cebc01250af1c0fcdeb6142df3320ff34e48280d56d6af37f8

    • SHA512

      c89dc340920688af1eb2227bec7a0d7b6d935536b1276cbfb615bcdff1cef5f0089261c9d73b33108494f65cf351ac8e82439466db94a311f8247dde2f4f2659

    • SSDEEP

      393216:Lu7L/dWBb+4hQenSyY+k4tOJCEDd/m3pCZkVRiEFT7bfIGy:LCL0N+4XY4tuCEDdKCZkVRiS7kT

    Score
    7/10
    spywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Credentials in Files

1
T1081

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks