Overview

overview

10

Static

static

10

setup.exe

windows7-x64

7

setup.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    setup.exe

  • Size

    3.5MB

  • Sample

    240103-mmn1escfen

  • MD5

    b91097bff5f741a965eb80edfcc97b0b

  • SHA1

    fdebe47b69442a312c1008c7a5ee71b3f41b4a68

  • SHA256

    de4da24486f406177afea313e60468918398dbbdb3551a7290a4050966494728

  • SHA512

    21b96d15a463a5cdc7e2016a8a1e1cf636b1c4d13343f66fdcad24deecba56a29797600701ac3a382133ca585c89eb81fab085853991c19ccf245ff11de91514

  • SSDEEP

    49152:JAdGB73ejP3+EMfRdASVaAvrC5Xh602+:JAgR3epMjASHch

Score
10/10
ekanszebrocyspywarestealer

Malware Config

Targets

    • Target

      setup.exe

    • Size

      3.5MB

    • MD5

      b91097bff5f741a965eb80edfcc97b0b

    • SHA1

      fdebe47b69442a312c1008c7a5ee71b3f41b4a68

    • SHA256

      de4da24486f406177afea313e60468918398dbbdb3551a7290a4050966494728

    • SHA512

      21b96d15a463a5cdc7e2016a8a1e1cf636b1c4d13343f66fdcad24deecba56a29797600701ac3a382133ca585c89eb81fab085853991c19ccf245ff11de91514

    • SSDEEP

      49152:JAdGB73ejP3+EMfRdASVaAvrC5Xh602+:JAgR3epMjASHch

    Score
    7/10
    spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks