5f59b145dd8197341c1c174012303618c8aeb3ecebbce926fcec4a9af17e68bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

android-iphone-whatsapp-transfer-plus_x64.exe
Size

15.5MB
Sample

230420-x9lhxsdh6s
MD5

9ebd2715806768029dc9028eca5f48f1
SHA1

5ae55718024f4da98d452b5c1d6761f92fcc5e2c
SHA256

5f59b145dd8197341c1c174012303618c8aeb3ecebbce926fcec4a9af17e68bd
SHA512

585ee1f5e8c990e75e15763cec3be05b88141cd216c908a9df60f82a543edc6e30d2aef7efcc4f33cc08f6b57ee48deb34585998c4e943318ad776d42fa4425b
SSDEEP

393216:pIua62zSYO5niR4pHs4Ud/HT9WlQ+D37mXlOz2iHBuls:462zSYO5nPZM/HT9QQ+DclOzp7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  android-iphone-whatsapp-transfer-plus_x64.exe
- Size
  
  15.5MB
- MD5
  
  9ebd2715806768029dc9028eca5f48f1
- SHA1
  
  5ae55718024f4da98d452b5c1d6761f92fcc5e2c
- SHA256
  
  5f59b145dd8197341c1c174012303618c8aeb3ecebbce926fcec4a9af17e68bd
- SHA512
  
  585ee1f5e8c990e75e15763cec3be05b88141cd216c908a9df60f82a543edc6e30d2aef7efcc4f33cc08f6b57ee48deb34585998c4e943318ad776d42fa4425b
- SSDEEP
  
  393216:pIua62zSYO5niR4pHs4Ud/HT9WlQ+D37mXlOz2iHBuls:462zSYO5nPZM/HT9QQ+DclOzp7
Score

7^/10

discovery
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2