Overview

overview

10

Static

static

1

7c10c67ddb...b2.exe

windows7-x64

10

7c10c67ddb...b2.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c10c67ddb586532ce0fc507c8f33f3fe05cd866afeccd2b7e4275fae567afb2

  • Size

    653KB

  • Sample

    230915-x7z9aseg31

  • MD5

    c4176f4dd925bcc5f32cba245d667cfd

  • SHA1

    ccb699469798894205ec57ce39cbf43012129562

  • SHA256

    7c10c67ddb586532ce0fc507c8f33f3fe05cd866afeccd2b7e4275fae567afb2

  • SHA512

    d209ed701b863cee54f1e2200eb9964e69c8543302480ceb9c63625c132093c60e434ff1189eef243e651a2a385b58a8e22bb3e9cfadd6a356f9e875bba6df15

  • SSDEEP

    12288:P+qfAn8i1aAJLYnVFfVPqoMU7xSwXtVBOrHanRXKCR0R9fcSJiO:P+GPaaDVFIUcom6nQCREtr

Score
10/10
povertystealerspywarestealer

Malware Config

Targets

    • Target

      7c10c67ddb586532ce0fc507c8f33f3fe05cd866afeccd2b7e4275fae567afb2

    • Size

      653KB

    • MD5

      c4176f4dd925bcc5f32cba245d667cfd

    • SHA1

      ccb699469798894205ec57ce39cbf43012129562

    • SHA256

      7c10c67ddb586532ce0fc507c8f33f3fe05cd866afeccd2b7e4275fae567afb2

    • SHA512

      d209ed701b863cee54f1e2200eb9964e69c8543302480ceb9c63625c132093c60e434ff1189eef243e651a2a385b58a8e22bb3e9cfadd6a356f9e875bba6df15

    • SSDEEP

      12288:P+qfAn8i1aAJLYnVFfVPqoMU7xSwXtVBOrHanRXKCR0R9fcSJiO:P+GPaaDVFIUcom6nQCREtr

    Score
    10/10
    povertystealerspywarestealer

    • Detect Poverty Stealer Payload

    • Poverty Stealer

      Poverty Stealer is a crypto and infostealer written in C++.

      stealerpovertystealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks