Overview

overview

7

Static

static

3

3dd7fcf9a3...c4.exe

windows7-x64

7

3dd7fcf9a3...c4.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3dd7fcf9a3fd7dd5412db1bdee30ebc13e4aba9d40f8cde34eab85e69b362ec4

  • Size

    26KB

  • Sample

    231013-z5sgsacf97

  • MD5

    ad0c715179c78247a4530bf02984aedd

  • SHA1

    ebf17c9745d82177ecbca57f60b2b31b93d04bf0

  • SHA256

    3dd7fcf9a3fd7dd5412db1bdee30ebc13e4aba9d40f8cde34eab85e69b362ec4

  • SHA512

    fb41bcfeb8362ab3b0338b29617ec225bbad49cef768d6aff35f8e64909331d35f9dbe1cd251be61bd26dc4a62d00339fb4ca1d8decad40a8b3ab86b5bbb3451

  • SSDEEP

    384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjv2BR:8Q3LotOPNSQVwVVxGKEvKHrV4R

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      3dd7fcf9a3fd7dd5412db1bdee30ebc13e4aba9d40f8cde34eab85e69b362ec4

    • Size

      26KB

    • MD5

      ad0c715179c78247a4530bf02984aedd

    • SHA1

      ebf17c9745d82177ecbca57f60b2b31b93d04bf0

    • SHA256

      3dd7fcf9a3fd7dd5412db1bdee30ebc13e4aba9d40f8cde34eab85e69b362ec4

    • SHA512

      fb41bcfeb8362ab3b0338b29617ec225bbad49cef768d6aff35f8e64909331d35f9dbe1cd251be61bd26dc4a62d00339fb4ca1d8decad40a8b3ab86b5bbb3451

    • SSDEEP

      384:qc0J+vqBoLotA8oPNIrxKRQSv7QrzVVvOytGxboE9K/mKHrjpjv2BR:8Q3LotOPNSQVwVVxGKEvKHrV4R

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks