Overview

overview

7

Static

static

3

Enmity_tst.exe

windows7-x64

7

Enmity_tst.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Enmity_tst.bin.zip

  • Size

    414KB

  • Sample

    231006-t8np4sgf36

  • MD5

    ef26ba3342a957afbe7ceea36f53520b

  • SHA1

    e3ca70ddf149fb785314027a13df84f56f18cd78

  • SHA256

    a6800216b5ef9b5d094fad0d8dde70e0749de68b03b7c51f69c3e9248ffb8641

  • SHA512

    90ec2f745e89f65ec134f3db304469267f8d2eb90c8561f07667d044490e57cad556d3207102af8ce06d0dc82123500ef4b94133dcf517eb88ffe7c5391af64c

  • SSDEEP

    12288:lRBp7O2Vsc9qxWKBtxSvAP6f+bFrWEAkyZHr:lRv7WcAU6SvU2+ZrWEeVr

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      Enmity_tst.bin

    • Size

      924KB

    • MD5

      27a30d14db9546e1c7c08113e0519248

    • SHA1

      5df75be5bf6b53a87c9e349fe527d37599a8b805

    • SHA256

      ec7c9fda3df504d29af59b8b2ef1f60210adaf53242fa8105384c5aece383820

    • SHA512

      137ff312322bec0055db7456c00e0d1cca7ca37c6ba5f8af28ba0632e172620eac1cf8f4267852396f8f1def03be223c409fc3066f8a31f87b00646837046564

    • SSDEEP

      24576:WAJkGRwvJjRQ6szrbwOgBTGkXhdnGMFc/oC3ctBLIPasqnAY:rJXwBWznwbhXGmc/AxIPasqnAY

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks