Overview

overview

8

Static

static

7

d4893fb3b2...31.exe

windows7-x64

8

d4893fb3b2...31.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d4893fb3b267c9398acd4ce44933b24f815d008f5b41392b08f485bbe0642e31

  • Size

    1.3MB

  • Sample

    231112-k5pnkaee32

  • MD5

    e6ff6956aa4c690633fb48830d418b23

  • SHA1

    f0511abedcbaefd119c478378d5b74ff806323d4

  • SHA256

    d4893fb3b267c9398acd4ce44933b24f815d008f5b41392b08f485bbe0642e31

  • SHA512

    79e1f2dfa751c91c9389833aec2f883d9244bc0676b97aaf69ba5a4a4cd76f92906bff99dc0934008ad6fc5369d788278c7d280462f3fdb3eb72478c44597f71

  • SSDEEP

    24576:Qak/7Nk4RZlljiKZu0zoFmDcpii9iGn+66rLfJIgtEqPILWz8oDqE:Qak/bljLZu+k0WdEacJRIo+E

Score
8/10
aspackv2discoveryspywarestealer

Malware Config

Targets

    • Target

      d4893fb3b267c9398acd4ce44933b24f815d008f5b41392b08f485bbe0642e31

    • Size

      1.3MB

    • MD5

      e6ff6956aa4c690633fb48830d418b23

    • SHA1

      f0511abedcbaefd119c478378d5b74ff806323d4

    • SHA256

      d4893fb3b267c9398acd4ce44933b24f815d008f5b41392b08f485bbe0642e31

    • SHA512

      79e1f2dfa751c91c9389833aec2f883d9244bc0676b97aaf69ba5a4a4cd76f92906bff99dc0934008ad6fc5369d788278c7d280462f3fdb3eb72478c44597f71

    • SSDEEP

      24576:Qak/7Nk4RZlljiKZu0zoFmDcpii9iGn+66rLfJIgtEqPILWz8oDqE:Qak/bljLZu+k0WdEacJRIo+E

    Score
    8/10
    discoveryspywarestealer

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks