Overview

overview

10

Static

static

10

Securaforge.exe

windows10-1703-x64

7

Securaforge.exe

windows10-2004-x64

7

Securaforge.pyc

windows10-1703-x64

3

Securaforge.pyc

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Securaforge.exe

  • Size

    19.7MB

  • Sample

    231104-qsxrascf46

  • MD5

    72cd56381ce05517c28240b2c8d86d03

  • SHA1

    72693589306da2c705a66db0ea5704df9a66e0d8

  • SHA256

    56031b31f882e12949da528fd3c4b8f62efcc1cff15db0a87e8ab8500419c026

  • SHA512

    d642179d84774630c798aa1a146bc34c00e1d227453f91521f2306d0d0a099fe19490bef32214fc39114b5c66990511a9cedb2dbeab1bab66e015e345dfc2bf4

  • SSDEEP

    393216:sjjgfGH/vh4PE4z4VWaLlxiIE7YodVExk3meWcGfdlYM/kB7:iEfGfZSEE4PLle7rdWag5FlYy

Score
10/10
crealstealerpyinstallerspywarestealer

Malware Config

Targets

    • Target

      Securaforge.exe

    • Size

      19.7MB

    • MD5

      72cd56381ce05517c28240b2c8d86d03

    • SHA1

      72693589306da2c705a66db0ea5704df9a66e0d8

    • SHA256

      56031b31f882e12949da528fd3c4b8f62efcc1cff15db0a87e8ab8500419c026

    • SHA512

      d642179d84774630c798aa1a146bc34c00e1d227453f91521f2306d0d0a099fe19490bef32214fc39114b5c66990511a9cedb2dbeab1bab66e015e345dfc2bf4

    • SSDEEP

      393216:sjjgfGH/vh4PE4z4VWaLlxiIE7YodVExk3meWcGfdlYM/kB7:iEfGfZSEE4PLle7rdWag5FlYy

    Score
    7/10
    spywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

    • Target

      Securaforge.pyc

    • Size

      37.2MB

    • MD5

      0631416dabf2b897a704abb7390fc1d3

    • SHA1

      0943be2a1b6eef092b2194e404e29e0615f28125

    • SHA256

      ff70896b22263d1a2e71d1cdaac206a8a9b04eb8e0cff0d0b8213a40574b41f5

    • SHA512

      df75b155313300ff4d13738900c6667ccba760f6a1e05859661b9e964cc856f9249d33cb3bcd4602d4b25ba9dd44582f4c210b8d68b93854621811db6e005781

    • SSDEEP

      196608:jjr6wk8G9w1fFr1ySoW7gJZBB0c89CIDxyA0mCSj5wVoYccJO0IE37vjR1JjLL8g:jj6fN

    Score
    3/10
    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks