f3a5882037e708a07423217c13a3e2e016115faabbf5dc42397d19f49490154b | Triage

Submit
Reports

Overview

overview

7

Static

static

3

cves_windows.exe

windows7-x64

7

cves_windows.exe

windows10-2004-x64

7

Resubmissions

15/06/2023, 13:39

230615-qx8z5ahd71 7

14/06/2023, 11:43

230614-nvn6tsgb87 7

Sharing

Copy URL Twitter E-mail

General

Target

cveswindows.zip
Size

2.5MB
Sample

230615-qx8z5ahd71
MD5

7678204be68585b33f7ba69fa7111a6a
SHA1

a2f89a69a9df715b2c5070e3bf20cdc364e831da
SHA256

f3a5882037e708a07423217c13a3e2e016115faabbf5dc42397d19f49490154b
SHA512

bacd45cbe36e8faccb640bd09f8b86f28b89e5dec05b87852ce3547f235be98dd6a092d5f67e6cbaf937a5d520f0cde0487901ad9dd48b60e4054ab9efd194d1
SSDEEP

49152:bQZJ3yze31RQMdOgY6PdBUc5CspfcA3T0iRkdPEbv0XKUWyWd49fwz9jDu2:MZKe31RQ4sABj5zpN3T0mIEbv0X/bWd7

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cves_windows.exe

Resource

win7-20230220-en

spyware stealer

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

cves_windows.exe

Resource

win10v2004-20230220-en

spyware stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  cves_windows.exe
- Size
  
  5.8MB
- MD5
  
  41319760577a0df3145bceb010914526
- SHA1
  
  7b4828371f8d0fb7d564757f8c66197a77c3007c
- SHA256
  
  777c9220670025a487f4e853987df0482fbd545189137d58a60d4ab37c1cfbb4
- SHA512
  
  67aa1638ae3661ebceebede54116372fa9a3dfa59a2106f59c031530e731c258edb1bc2aec55d83b93f52fe84683030ecea23e91b36beeacc5f5526980a96971
- SSDEEP
  
  49152:qfUoYl63WYrb/TbvO90d7HjmAFd4A64nsfJBAmZgfk7bJsbsSQOUmzjkbsG0oq+Y:63WvAlJQSG0oGREmT
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Credentials in Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy