Overview

overview

10

Static

static

3

0024c31d88...33.exe

windows7-x64

10

0024c31d88...33.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0024c31d88297b2e5ba18b4b223d3a33

  • Size

    72KB

  • Sample

    231229-wtdygafgfl

  • MD5

    0024c31d88297b2e5ba18b4b223d3a33

  • SHA1

    40cd1d81be285eaa5717cf89da71830dea80af7d

  • SHA256

    c25615a76eb0f7c0d22bf950087ad4f508c0d80abb00c455423bde01a6407797

  • SHA512

    ea549b95b88f9efdb72d9135d8276b4fb9896bdda5ce4cd908a0bb4cfc58cc18e988cbb8dd1072a0ebd39d928c75250b1a0e2c90b0ce02ce539258b3b33ed1c0

  • SSDEEP

    1536:rSewjS5r9Unj79haWsVPXV6BrBxhLgRQ:r6jUr9UnHnsVPX6xF

Score
10/10
adwarepersistencestealer

Malware Config

Targets

    • Target

      0024c31d88297b2e5ba18b4b223d3a33

    • Size

      72KB

    • MD5

      0024c31d88297b2e5ba18b4b223d3a33

    • SHA1

      40cd1d81be285eaa5717cf89da71830dea80af7d

    • SHA256

      c25615a76eb0f7c0d22bf950087ad4f508c0d80abb00c455423bde01a6407797

    • SHA512

      ea549b95b88f9efdb72d9135d8276b4fb9896bdda5ce4cd908a0bb4cfc58cc18e988cbb8dd1072a0ebd39d928c75250b1a0e2c90b0ce02ce539258b3b33ed1c0

    • SSDEEP

      1536:rSewjS5r9Unj79haWsVPXV6BrBxhLgRQ:r6jUr9UnHnsVPX6xF

    Score
    10/10
    adwarepersistencestealer

    • Modifies WinLogon for persistence

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks