Overview

overview

7

Static

static

3

94a9c57e4b...37.exe

windows7-x64

7

94a9c57e4b...37.exe

windows10-2004-x64

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    94a9c57e4b6f9da61f8c41dd9f62f8f18f6a6d160dd0702443672d484b5a1237

  • Size

    1.8MB

  • Sample

    240129-mlcwrsfhe7

  • MD5

    bbfc1cfeea6b8ea2fde04df8eb4e5a56

  • SHA1

    5728022169c869824064d6661990f975401c7529

  • SHA256

    94a9c57e4b6f9da61f8c41dd9f62f8f18f6a6d160dd0702443672d484b5a1237

  • SHA512

    35d2cfed07026a7f35bf6c8a27fdf3deb0ac652cee729776342121fbf65c70d5f1b8593381a7cfc8cd63a913547a81eed2a0fb5f7e1cff9fa75fd3ccd9b49eb6

  • SSDEEP

    49152:XKJ0WR7AFPyyiSruXKpk3WFDL9zxnSlaB0zj0yjoB2:XKlBAFPydSS6W6X9lnbB2Yyjl

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      94a9c57e4b6f9da61f8c41dd9f62f8f18f6a6d160dd0702443672d484b5a1237

    • Size

      1.8MB

    • MD5

      bbfc1cfeea6b8ea2fde04df8eb4e5a56

    • SHA1

      5728022169c869824064d6661990f975401c7529

    • SHA256

      94a9c57e4b6f9da61f8c41dd9f62f8f18f6a6d160dd0702443672d484b5a1237

    • SHA512

      35d2cfed07026a7f35bf6c8a27fdf3deb0ac652cee729776342121fbf65c70d5f1b8593381a7cfc8cd63a913547a81eed2a0fb5f7e1cff9fa75fd3ccd9b49eb6

    • SSDEEP

      49152:XKJ0WR7AFPyyiSruXKpk3WFDL9zxnSlaB0zj0yjoB2:XKlBAFPydSS6W6X9lnbB2Yyjl

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks