Overview

overview

7

Static

static

3

4705e635d0...64.exe

windows7-x64

7

4705e635d0...64.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4705e635d098dfd6152b5e6f8d132364

  • Size

    7.1MB

  • Sample

    231226-azvyaagcb9

  • MD5

    4705e635d098dfd6152b5e6f8d132364

  • SHA1

    29893844af2327d1e6534aa2f9051a4e9b1de755

  • SHA256

    88658c0ab23a5d03bae5aad31ee093ffc529d31fc0cfc09f4185827b597feadf

  • SHA512

    d6f63ca3375628de671a1f87558a87a30dce19c90cadf835d114ce9a127b5a77a943fae7b1a921b8f666c7bdb3a5d986710ae9425f8b92ea95798ff3cb2821db

  • SSDEEP

    196608:fwO2D0K0nenT2mYpcN55uYeUF186CtOTu:YO2IK0nenTy2YYeUFa8Tu

Score
7/10
pyinstallerspywarestealer

Malware Config

Targets

    • Target

      4705e635d098dfd6152b5e6f8d132364

    • Size

      7.1MB

    • MD5

      4705e635d098dfd6152b5e6f8d132364

    • SHA1

      29893844af2327d1e6534aa2f9051a4e9b1de755

    • SHA256

      88658c0ab23a5d03bae5aad31ee093ffc529d31fc0cfc09f4185827b597feadf

    • SHA512

      d6f63ca3375628de671a1f87558a87a30dce19c90cadf835d114ce9a127b5a77a943fae7b1a921b8f666c7bdb3a5d986710ae9425f8b92ea95798ff3cb2821db

    • SSDEEP

      196608:fwO2D0K0nenT2mYpcN55uYeUF186CtOTu:YO2IK0nenTy2YYeUFa8Tu

    Score
    7/10
    pyinstallerspywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks