Overview

overview

8

Static

static

3

a8c5fe8f77...5b.exe

windows7-x64

8

a8c5fe8f77...5b.exe

windows10-2004-x64

8

Resubmissions

20/02/2024, 22:41

240220-2l5n4sge24 8

20/02/2024, 22:35

240220-2hwxssgd77 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a8c5fe8f772d8934eebc826afab76e61c2db32d6a3ff7717fe0fb8751912bb5b

  • Size

    491KB

  • Sample

    240220-2hwxssgd77

  • MD5

    a9bc0281eb8a405233bd7342ec7604fb

  • SHA1

    2935995a3f63c85577ea7eeea237fed5a6142259

  • SHA256

    a8c5fe8f772d8934eebc826afab76e61c2db32d6a3ff7717fe0fb8751912bb5b

  • SHA512

    1a095bbde13ef762dd0dd1d7cd6dd7dfbd228878c9a6f11a952203e03274065be0501ac2c03de627a8ed445cbf298b2f0f853348d55100530785477d3c0ea7dc

  • SSDEEP

    6144:T46tGdyr6Mz1gL5pRTMTTjMkId/BynSx7dEe6XwzRaktNP08NhKs39zo43fTtl1L:T3N2i1gL5pRTcAkS/3hzN8qE43fm78V

Score
8/10
spywarestealer

Malware Config

Targets

    • Target

      a8c5fe8f772d8934eebc826afab76e61c2db32d6a3ff7717fe0fb8751912bb5b

    • Size

      491KB

    • MD5

      a9bc0281eb8a405233bd7342ec7604fb

    • SHA1

      2935995a3f63c85577ea7eeea237fed5a6142259

    • SHA256

      a8c5fe8f772d8934eebc826afab76e61c2db32d6a3ff7717fe0fb8751912bb5b

    • SHA512

      1a095bbde13ef762dd0dd1d7cd6dd7dfbd228878c9a6f11a952203e03274065be0501ac2c03de627a8ed445cbf298b2f0f853348d55100530785477d3c0ea7dc

    • SSDEEP

      6144:T46tGdyr6Mz1gL5pRTMTTjMkId/BynSx7dEe6XwzRaktNP08NhKs39zo43fTtl1L:T3N2i1gL5pRTcAkS/3hzN8qE43fm78V

    Score
    8/10
    spywarestealer

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks