Overview

overview

7

Static

static

3

540e656167...6a.exe

windows7-x64

7

540e656167...6a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    540e656167cee1e872c0a4d98e53fa636692b879c1c72f4250aefbe77ad5a66a

  • Size

    25KB

  • Sample

    231013-em9ywsfc69

  • MD5

    764e7d542adbda62281dc0df70a69a64

  • SHA1

    02b4800a09b2bc7ea779c97b073ed5dc0afd063f

  • SHA256

    540e656167cee1e872c0a4d98e53fa636692b879c1c72f4250aefbe77ad5a66a

  • SHA512

    8538a6e26675051fc441cdcd7fd05cfd2ad87290e2e00dc8b58c8a4b5d39b92b5e7befc172cdc85411168952d62b8bfb38464cc1565e6c7f831a3ad14d25d0c5

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvho:8Q3LotOPNSQVwVVxGKEvKHrVG

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      540e656167cee1e872c0a4d98e53fa636692b879c1c72f4250aefbe77ad5a66a

    • Size

      25KB

    • MD5

      764e7d542adbda62281dc0df70a69a64

    • SHA1

      02b4800a09b2bc7ea779c97b073ed5dc0afd063f

    • SHA256

      540e656167cee1e872c0a4d98e53fa636692b879c1c72f4250aefbe77ad5a66a

    • SHA512

      8538a6e26675051fc441cdcd7fd05cfd2ad87290e2e00dc8b58c8a4b5d39b92b5e7befc172cdc85411168952d62b8bfb38464cc1565e6c7f831a3ad14d25d0c5

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjvho:8Q3LotOPNSQVwVVxGKEvKHrVG

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks