Overview

overview

7

Static

static

3

53292a48d7...f7.exe

windows7-x64

7

53292a48d7...f7.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    53292a48d7fb5b504607ce510b1d6af7

  • Size

    4.9MB

  • Sample

    240111-lkk1baddel

  • MD5

    53292a48d7fb5b504607ce510b1d6af7

  • SHA1

    34c4b8613669a4c3951661dc5fc704340eeb2090

  • SHA256

    0e9421fc6fbab75b64eb55615aa7530f7a43a594d0205ba83085f0c2027ff864

  • SHA512

    74e3fbc8da5fabbd36870c7f230167c942ed527a274cc74f6867d5d5145d7078e25525cdf91b74ff069be058b8eceb75fa451ee35e020bb14ef2d231153cc071

  • SSDEEP

    98304:OqOqu8YlbvbaNGYII+IDQLM+M6RkMkIM7UJdXN0B7+s7sNi9Xwgwfot:OqOqklbvbaNGYIxuQ5i9XwgwAt

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      53292a48d7fb5b504607ce510b1d6af7

    • Size

      4.9MB

    • MD5

      53292a48d7fb5b504607ce510b1d6af7

    • SHA1

      34c4b8613669a4c3951661dc5fc704340eeb2090

    • SHA256

      0e9421fc6fbab75b64eb55615aa7530f7a43a594d0205ba83085f0c2027ff864

    • SHA512

      74e3fbc8da5fabbd36870c7f230167c942ed527a274cc74f6867d5d5145d7078e25525cdf91b74ff069be058b8eceb75fa451ee35e020bb14ef2d231153cc071

    • SSDEEP

      98304:OqOqu8YlbvbaNGYII+IDQLM+M6RkMkIM7UJdXN0B7+s7sNi9Xwgwfot:OqOqklbvbaNGYIxuQ5i9XwgwAt

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks