Overview

overview

7

Static

static

3

8cc194e259...8b.exe

windows7-x64

7

8cc194e259...8b.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8cc194e2597c33ce73f4e69095c19a71a6c5340d3e5abb29bb699d7edb7b038b

  • Size

    26KB

  • Sample

    230922-xfbrmahf91

  • MD5

    953b34ddc7bee903b268fb7533ed1628

  • SHA1

    46209d31204cadd1c6b96e39b4945b5a472d7d75

  • SHA256

    8cc194e2597c33ce73f4e69095c19a71a6c5340d3e5abb29bb699d7edb7b038b

  • SHA512

    96d37ee211584dbb5881aeb429eef11fc31a956d18826e2c09df56a5bdd5cf4a1474369eeac8e0498f9325f38bf87daafd225e38263742a9d2bd17aa591084d6

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvJPM:8Q3LotOPNSQVwVVxGKEvKHrVJPM

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      8cc194e2597c33ce73f4e69095c19a71a6c5340d3e5abb29bb699d7edb7b038b

    • Size

      26KB

    • MD5

      953b34ddc7bee903b268fb7533ed1628

    • SHA1

      46209d31204cadd1c6b96e39b4945b5a472d7d75

    • SHA256

      8cc194e2597c33ce73f4e69095c19a71a6c5340d3e5abb29bb699d7edb7b038b

    • SHA512

      96d37ee211584dbb5881aeb429eef11fc31a956d18826e2c09df56a5bdd5cf4a1474369eeac8e0498f9325f38bf87daafd225e38263742a9d2bd17aa591084d6

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvJPM:8Q3LotOPNSQVwVVxGKEvKHrVJPM

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks