Overview

overview

7

Static

static

3

6355335f30...97.exe

windows7-x64

7

6355335f30...97.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    6355335f30d9e4c0270f7d11ed02bd65fbf9599f14457da4214059eba796e197

  • Size

    25KB

  • Sample

    230901-ez56gacf36

  • MD5

    9b4815f8a3d6c0109acc4a2ee281b4df

  • SHA1

    aa4374d833ac3f9bf0445fe7c216d6ea25c11a3a

  • SHA256

    6355335f30d9e4c0270f7d11ed02bd65fbf9599f14457da4214059eba796e197

  • SHA512

    a61972936edfd6d09cd49d2edd12f9d4ea9a693ec320e6341b68db4921e538d30c9aad146f5be390156839c7f562ee5d3868ab193326bc3b2f55ada1b6808110

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvtR:8Q3LotOPNSQVwVVxGKEvKHrVf

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      6355335f30d9e4c0270f7d11ed02bd65fbf9599f14457da4214059eba796e197

    • Size

      25KB

    • MD5

      9b4815f8a3d6c0109acc4a2ee281b4df

    • SHA1

      aa4374d833ac3f9bf0445fe7c216d6ea25c11a3a

    • SHA256

      6355335f30d9e4c0270f7d11ed02bd65fbf9599f14457da4214059eba796e197

    • SHA512

      a61972936edfd6d09cd49d2edd12f9d4ea9a693ec320e6341b68db4921e538d30c9aad146f5be390156839c7f562ee5d3868ab193326bc3b2f55ada1b6808110

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvtR:8Q3LotOPNSQVwVVxGKEvKHrVf

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks