86368d4819ca51b0e1a7c63877314611549cd78c6435137bc31261b9a08cb496 | Triage

Submit
Reports

Overview

overview

9

Static

static

1

f1f72dc070...b7.exe

windows7-x64

f1f72dc070...b7.exe

windows10-2004-x64

9

Resubmissions

28-03-2023 22:02

230328-1xxbfade86 9

28-03-2023 21:58

230328-1vl3pade78 9

Sharing

General

Target

9738768790.zip
Size

1.8MB
Sample

230328-1vl3pade78
MD5

728feb90e44dcc0aca8dcb6e5da07e33
SHA1

629db047e7bda3aab1e6edd944cac4eaa7ef21b9
SHA256

86368d4819ca51b0e1a7c63877314611549cd78c6435137bc31261b9a08cb496
SHA512

f0b900345b86640abc38226d32270c39882acf0ed351c490d6c3bfdb7a09670ab63bde4d1cfffce4a44b076371cb2add29290c9328d300b14b8e21b5b3066fed
SSDEEP

49152:is2tkzBG/VXYqdxoYNRZiIuk+vu1ksPhcGbYrEcmjFDez3sK3HtnS:i/iUpYqdxVjZdu+P/YIzjFDsN5S

Score

9^/10

evasion ransomware spyware stealer

Static task

static1

Behavioral task

behavioral1

Sample

f1f72dc070609ea57ed4e3e07fab2de6770f9bcae6b85ec395184f9fe2cb2cb7.exe

Resource

win7-20230220-en

evasion ransomware spyware stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

f1f72dc070609ea57ed4e3e07fab2de6770f9bcae6b85ec395184f9fe2cb2cb7.exe

Resource

win10v2004-20230220-en

evasion ransomware spyware stealer

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  f1f72dc070609ea57ed4e3e07fab2de6770f9bcae6b85ec395184f9fe2cb2cb7
- Size
  
  3.1MB
- MD5
  
  92ffd2386f0d90f07e12f74ed815d219
- SHA1
  
  161df5d3809b21bcee3c633c9b0cb35f7db046ab
- SHA256
  
  f1f72dc070609ea57ed4e3e07fab2de6770f9bcae6b85ec395184f9fe2cb2cb7
- SHA512
  
  e245c920f563fb0a59da61ba4d9d50d62b6628b9f4307cc046cb17498b3883b607296649d97c1e74ec01b4a4a3196f78894cc025b54847973cb2dfea2ca62763
- SSDEEP
  
  49152:yQe1or7i33p0rb/TNvO90d7HjmAFd4A64nsfJm++4MKtgynxVT+l9yxm2z1AmW00:bq3prE1g3ezAHco7Y
Score

9^/10

evasion ransomware spyware stealer
- Clears Windows event logs
  evasion ransomware
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal on Host

Credential Access

Credentials in Files

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionransomwarespywarestealer

behavioral2

evasionransomwarespywarestealer

© 2018-2024

Terms | Privacy