Overview

overview

7

Static

static

3

09f801b31b...44.exe

windows7-x64

7

09f801b31b...44.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    09f801b31b0d3ecbdf67113059f8a744

  • Size

    864KB

  • Sample

    231230-brvg8acea7

  • MD5

    09f801b31b0d3ecbdf67113059f8a744

  • SHA1

    a2d48c626a148314ad5f41f71b7b3c3102525e31

  • SHA256

    38dcae9d8e9155cbbafab1804b3daa48b7b381afb41e920a695ba922594dc459

  • SHA512

    d1ef52af54d3f3451170a6dc9fd647369a804f0c25b8e37dfdffecd43b3e847087705cada3a8921e22b4061ffe16f24cfa918b6de68ffeee3485e249fd8ff3cc

  • SSDEEP

    12288:T51+RkZ2TDVADK/nj+qmTIw65lX4JvJ+gTuCX2Cn7aZqoLl+nwvAU+egNaEP9:TqRkoB/nj+qmMwf/VX3GZqoLl+JJeNy

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      09f801b31b0d3ecbdf67113059f8a744

    • Size

      864KB

    • MD5

      09f801b31b0d3ecbdf67113059f8a744

    • SHA1

      a2d48c626a148314ad5f41f71b7b3c3102525e31

    • SHA256

      38dcae9d8e9155cbbafab1804b3daa48b7b381afb41e920a695ba922594dc459

    • SHA512

      d1ef52af54d3f3451170a6dc9fd647369a804f0c25b8e37dfdffecd43b3e847087705cada3a8921e22b4061ffe16f24cfa918b6de68ffeee3485e249fd8ff3cc

    • SSDEEP

      12288:T51+RkZ2TDVADK/nj+qmTIw65lX4JvJ+gTuCX2Cn7aZqoLl+nwvAU+egNaEP9:TqRkoB/nj+qmMwf/VX3GZqoLl+JJeNy

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks