Overview

overview

10

Static

static

3

e57d05f1d9...ex.exe

windows7-x64

10

e57d05f1d9...ex.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    e57d05f1d9b076exeexeexeex.exe

  • Size

    299KB

  • Sample

    230711-hvd3zaga6x

  • MD5

    e57d05f1d9b07674e3a405788e4e05e4

  • SHA1

    681ac82cf9e309b425e104cdd8b43bf990c59625

  • SHA256

    523b7d0cbdf580c3661dda9e5bf1ac5a93b4735fd43b52d442e0c66e0125c5ec

  • SHA512

    71272d245ecb391a0e37fb3c987d75df530dcadf260c21db85a14131c25d9c78f7dcf7824a1766ab9f082bf0bcb8035602a09337cddc17b744fd934c46b5df40

  • SSDEEP

    3072:vzrM871SlQaBEE4qbIsGLdZ4aGTn06dmUK8Ykvcyyo1XTDU5W/aUQ5HnVfajZMzn:vTRSlv4nsGLtGTnX26TywQhhL9atzyW

Score
10/10
evasionpersistencespywarestealertrojan

Malware Config

Targets

    • Target

      e57d05f1d9b076exeexeexeex.exe

    • Size

      299KB

    • MD5

      e57d05f1d9b07674e3a405788e4e05e4

    • SHA1

      681ac82cf9e309b425e104cdd8b43bf990c59625

    • SHA256

      523b7d0cbdf580c3661dda9e5bf1ac5a93b4735fd43b52d442e0c66e0125c5ec

    • SHA512

      71272d245ecb391a0e37fb3c987d75df530dcadf260c21db85a14131c25d9c78f7dcf7824a1766ab9f082bf0bcb8035602a09337cddc17b744fd934c46b5df40

    • SSDEEP

      3072:vzrM871SlQaBEE4qbIsGLdZ4aGTn06dmUK8Ykvcyyo1XTDU5W/aUQ5HnVfajZMzn:vTRSlv4nsGLtGTnX26TywQhhL9atzyW

    Score
    10/10
    evasionpersistencespywarestealertrojan

    • Modifies visibility of file extensions in Explorer

      evasion

    • UAC bypass

      evasiontrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks