Overview

overview

7

Static

static

3

adf97ae9cf...82.exe

windows7-x64

7

adf97ae9cf...82.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    adf97ae9cf73fc3e3519ccd81cb0fc82

  • Size

    2.8MB

  • Sample

    231222-q4gt8aefb4

  • MD5

    adf97ae9cf73fc3e3519ccd81cb0fc82

  • SHA1

    7a9c642a3aec4838bfd8448e10564d17d335f6a4

  • SHA256

    c0bcd39d241e30f64bd98c5f9732de787a807d576e740ce80ada5d71282c7398

  • SHA512

    fab15ccdeb7811e9869a77e9ffe13b8f379f9c87f91a01d9de03a2729b745cca5e59ce6264a07c6f59e106df7b130a987b094d982c9d6ace1f4816450d5dde2a

  • SSDEEP

    49152:p9t6jQa2oIgjdsk9WnO7cY/qsNBk9/fw2BwfmM0fqCIabjKoh9Wj:8jz23gjOk9WOYLsNi9XwgwfovIabjKo0

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      adf97ae9cf73fc3e3519ccd81cb0fc82

    • Size

      2.8MB

    • MD5

      adf97ae9cf73fc3e3519ccd81cb0fc82

    • SHA1

      7a9c642a3aec4838bfd8448e10564d17d335f6a4

    • SHA256

      c0bcd39d241e30f64bd98c5f9732de787a807d576e740ce80ada5d71282c7398

    • SHA512

      fab15ccdeb7811e9869a77e9ffe13b8f379f9c87f91a01d9de03a2729b745cca5e59ce6264a07c6f59e106df7b130a987b094d982c9d6ace1f4816450d5dde2a

    • SSDEEP

      49152:p9t6jQa2oIgjdsk9WnO7cY/qsNBk9/fw2BwfmM0fqCIabjKoh9Wj:8jz23gjOk9WOYLsNi9XwgwfovIabjKo0

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks