Analysis
-
max time kernel
143s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20231215-en -
resource tags
-
submitted
01/02/2024, 06:51
General
-
Target
8638ce1953a8dafd2c31d337ed38d0e2.exe
-
Size
620KB
-
MD5
8638ce1953a8dafd2c31d337ed38d0e2
-
SHA1
a200670b0faf9f25d27dac436996627bfdf91f5a
-
SHA256
24bb624505c3bab08656b01272e944774de3b3d909479f6ac6bf606c2e82e455
-
SHA512
1770b8f60776489fdfe41ba51d785e5d335833b9c53ab34064b5f4208f791ca003c7dde3c7e58af2340a9efcd47795feb463033a68972db7fd7858dd7f841c45
-
SSDEEP
12288:bWOmu28vF+GAY8VNuDzxUziRhXy8s7Sty4+ITmrQXuylUuDfUGbnOWxoo/:u8tATUaWYGOQFl5Dcchok
Malware Config
Signatures
-
Reads data files stored by FTP clients 2 TTPs
Tries to access configuration files associated with programs like FileZilla.
-
Reads local data of messenger clients 2 TTPs
Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
-
Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
Processes
-
C:\Users\Admin\AppData\Local\Temp\8638ce1953a8dafd2c31d337ed38d0e2.exe"C:\Users\Admin\AppData\Local\Temp\8638ce1953a8dafd2c31d337ed38d0e2.exe"1⤵
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
364KB
-
Filesize
16KB
-
Filesize
228KB
-
Filesize
64KB
-
Filesize
364KB
-
Filesize
4KB
-
Filesize
64KB
-
Filesize
960KB
-
Filesize
4KB
-
Filesize
4KB
-
Filesize
364KB
-
Filesize
228KB
-
Filesize
64KB
-
Filesize
960KB