Overview

overview

7

Static

static

3

145df0c858...60.exe

windows7-x64

7

145df0c858...60.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    145df0c858e0f763c9842b5ad785ee35959413efe234f5c8acc50f5c14f92e60

  • Size

    26KB

  • Sample

    231012-v6gz8agg25

  • MD5

    7cd7f26aa2ee51d2d053bf861b8f3b18

  • SHA1

    346b47c44e270a1440ff7c80ff24e6cddedd23e6

  • SHA256

    145df0c858e0f763c9842b5ad785ee35959413efe234f5c8acc50f5c14f92e60

  • SHA512

    e40c043a5d9056ebbcb9f28bf9b023c3a44ff68b77b18304204552db98e83a7cae373c98de28e77b6faef54dacfcc258788cb2a9c1f2a1f3716f12c3ecaa7818

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvuN:8Q3LotOPNSQVwVVxGKEvKHrVq

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      145df0c858e0f763c9842b5ad785ee35959413efe234f5c8acc50f5c14f92e60

    • Size

      26KB

    • MD5

      7cd7f26aa2ee51d2d053bf861b8f3b18

    • SHA1

      346b47c44e270a1440ff7c80ff24e6cddedd23e6

    • SHA256

      145df0c858e0f763c9842b5ad785ee35959413efe234f5c8acc50f5c14f92e60

    • SHA512

      e40c043a5d9056ebbcb9f28bf9b023c3a44ff68b77b18304204552db98e83a7cae373c98de28e77b6faef54dacfcc258788cb2a9c1f2a1f3716f12c3ecaa7818

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvuN:8Q3LotOPNSQVwVVxGKEvKHrVq

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks