Overview

overview

8

Static

static

5

tmp.exe

windows7-x64

1

tmp.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    tmp

  • Size

    1009KB

  • Sample

    230413-xlarhsde42

  • MD5

    c556ab520a754e6f12d47f4f44ad0175

  • SHA1

    12da84ee12f2d6eeaeea146239ce9b09265ae0b8

  • SHA256

    e5928b7778cd9f4230ca1debd22a9182e77967c6f9dc8b7dbb502fe7ec329483

  • SHA512

    25e0a48137c4d833ca71956120428362e7dd0368bfeecc66d6a7ac3fa6f8147bb5ce70967282a62ab2cc16652f23afdd91f99ca1290a4036fa6cad37bffa1f99

  • SSDEEP

    24576:zqDEvCTbMWu7rQYlBQcBiT6rprG8a8nYz0DpaP:zTvC/MTQYxsWR7a8nU0Dpa

Score
8/10
spywarestealer

Malware Config

Targets

    • Target

      tmp

    • Size

      1009KB

    • MD5

      c556ab520a754e6f12d47f4f44ad0175

    • SHA1

      12da84ee12f2d6eeaeea146239ce9b09265ae0b8

    • SHA256

      e5928b7778cd9f4230ca1debd22a9182e77967c6f9dc8b7dbb502fe7ec329483

    • SHA512

      25e0a48137c4d833ca71956120428362e7dd0368bfeecc66d6a7ac3fa6f8147bb5ce70967282a62ab2cc16652f23afdd91f99ca1290a4036fa6cad37bffa1f99

    • SSDEEP

      24576:zqDEvCTbMWu7rQYlBQcBiT6rprG8a8nYz0DpaP:zTvC/MTQYxsWR7a8nU0Dpa

    Score
    8/10
    spywarestealer

    • Downloads MZ/PE file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks