Overview

overview

8

Static

static

3

07e6607647...2c.exe

windows7-x64

8

07e6607647...2c.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    07e66076479143a29bbaec9da8864b2c

  • Size

    383KB

  • Sample

    231219-mlkllscfgq

  • MD5

    07e66076479143a29bbaec9da8864b2c

  • SHA1

    ea87030e928ce37dc60918c21d90b52b1989f9ba

  • SHA256

    1c7235c940de810ecc7a9399ee35cb5d9c92c8c1d63736d42ecbe3e9c5e03c40

  • SHA512

    0dcfd97a1091ba88d845e06c33eb677b7ded09563c8a9fd99d19c2213b99e92c8c4cc8ee71c7c9c65de83d254a4fe380d6e059cdf75ea56d965d4b192a57df97

  • SSDEEP

    3072:B7puEEMoTEqTY9VfrW7puEEMoTEqTY9VfrWqilLoME2PLgx4HS9aukflTOAx06Np:ppMM8EV1GpMM8EV1WoME1ESbkflTOASa

Score
8/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      07e66076479143a29bbaec9da8864b2c

    • Size

      383KB

    • MD5

      07e66076479143a29bbaec9da8864b2c

    • SHA1

      ea87030e928ce37dc60918c21d90b52b1989f9ba

    • SHA256

      1c7235c940de810ecc7a9399ee35cb5d9c92c8c1d63736d42ecbe3e9c5e03c40

    • SHA512

      0dcfd97a1091ba88d845e06c33eb677b7ded09563c8a9fd99d19c2213b99e92c8c4cc8ee71c7c9c65de83d254a4fe380d6e059cdf75ea56d965d4b192a57df97

    • SSDEEP

      3072:B7puEEMoTEqTY9VfrW7puEEMoTEqTY9VfrWqilLoME2PLgx4HS9aukflTOAx06Np:ppMM8EV1GpMM8EV1WoME1ESbkflTOASa

    Score
    8/10
    discoverypersistencespywarestealer

    • Contacts a large (1426) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks