Overview

overview

7

Static

static

3

4ef6fd3c5f...JC.exe

windows7-x64

7

4ef6fd3c5f...JC.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4ef6fd3c5fd743118d469ad010376137608705283c29d6fc69962a22c68a439c_JC.exe

  • Size

    397KB

  • Sample

    230930-pga8gsda88

  • MD5

    c0dea0924d9a8360e4fefcb307758b30

  • SHA1

    a6139dd89cbf42c29ec260dee802685c49597468

  • SHA256

    4ef6fd3c5fd743118d469ad010376137608705283c29d6fc69962a22c68a439c

  • SHA512

    0163e285d7d1256629f1f9f0b1c3c4cdc4b83a2353e1e48257667108b6449718ad666a40095cd16c559b1afb88550dea64de11cfa66999f904f7e1ce551c1926

  • SSDEEP

    6144:zsLHC6LvbehdMunOyLhyjRgLhREI5MUyrKktZh/x1xKm98l4vYT:zs+6jb6dfnOyLWoRWrvhQEvI

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      4ef6fd3c5fd743118d469ad010376137608705283c29d6fc69962a22c68a439c_JC.exe

    • Size

      397KB

    • MD5

      c0dea0924d9a8360e4fefcb307758b30

    • SHA1

      a6139dd89cbf42c29ec260dee802685c49597468

    • SHA256

      4ef6fd3c5fd743118d469ad010376137608705283c29d6fc69962a22c68a439c

    • SHA512

      0163e285d7d1256629f1f9f0b1c3c4cdc4b83a2353e1e48257667108b6449718ad666a40095cd16c559b1afb88550dea64de11cfa66999f904f7e1ce551c1926

    • SSDEEP

      6144:zsLHC6LvbehdMunOyLhyjRgLhREI5MUyrKktZh/x1xKm98l4vYT:zs+6jb6dfnOyLWoRWrvhQEvI

    Score
    7/10
    discoveryspywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks