Overview

overview

10

Static

static

10

a339a377ab...b3.exe

windows7-x64

10

a339a377ab...b3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a339a377abbfb9c0ee85652901cc67b3

  • Size

    1.0MB

  • Sample

    240225-je915sff4w

  • MD5

    a339a377abbfb9c0ee85652901cc67b3

  • SHA1

    cbafbcefd502b16d4661a2da17fc6d04b34ee0cb

  • SHA256

    0a0a341eb3849788273e62d2acd28de82942f01396c7543f85a5b8a8420e0c44

  • SHA512

    a43ae5d6cf03c96ae757bdb97521562c64e7248d73791ecfae1498df4e9b7401d359bba5e56a3ba2c16cc0e6f30cfc6b9c421667353cb4677b98977c0082282d

  • SSDEEP

    24576:JjE5gAVhhUF54clNf7+6uHAW92zt/sWu2BSMCqDoR4E:go54clgLH+tkWJ0Nj

Score
10/10
echelonspywarestealer

Malware Config

Targets

    • Target

      a339a377abbfb9c0ee85652901cc67b3

    • Size

      1.0MB

    • MD5

      a339a377abbfb9c0ee85652901cc67b3

    • SHA1

      cbafbcefd502b16d4661a2da17fc6d04b34ee0cb

    • SHA256

      0a0a341eb3849788273e62d2acd28de82942f01396c7543f85a5b8a8420e0c44

    • SHA512

      a43ae5d6cf03c96ae757bdb97521562c64e7248d73791ecfae1498df4e9b7401d359bba5e56a3ba2c16cc0e6f30cfc6b9c421667353cb4677b98977c0082282d

    • SSDEEP

      24576:JjE5gAVhhUF54clNf7+6uHAW92zt/sWu2BSMCqDoR4E:go54clgLH+tkWJ0Nj

    Score
    10/10
    echelonspywarestealer

    • Detects Echelon Stealer payload

    • Echelon

      Echelon is a .NET stealer that targets passwords from browsers, email and cryptocurrency clients.

      stealerspywareechelon

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks