Overview

overview

7

Static

static

3

b5006f61b2...b8.exe

windows7-x64

7

b5006f61b2...b8.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    b5006f61b2736fe20894045db503b4b8

  • Size

    2.1MB

  • Sample

    240305-sj8hjsaf72

  • MD5

    b5006f61b2736fe20894045db503b4b8

  • SHA1

    3243a1a04c9606259423189b70245b2366c071ec

  • SHA256

    b082023aed0ecf335be18cd418f7b65b577dc8e0baadaceffbbaa383c45f0c74

  • SHA512

    f6bf3a33f1cf61f207919949336ec302f8ccc43a5e9b06a890503fa9bbef47a0d248473855689146680bf7c5b1829e088b04a21a46c412ece68e51873243ad53

  • SSDEEP

    49152:qdhALqrGBsNBk9/fw2BwfmM0f9btL2tL:dlsNi9XwgwfoBV2V

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      b5006f61b2736fe20894045db503b4b8

    • Size

      2.1MB

    • MD5

      b5006f61b2736fe20894045db503b4b8

    • SHA1

      3243a1a04c9606259423189b70245b2366c071ec

    • SHA256

      b082023aed0ecf335be18cd418f7b65b577dc8e0baadaceffbbaa383c45f0c74

    • SHA512

      f6bf3a33f1cf61f207919949336ec302f8ccc43a5e9b06a890503fa9bbef47a0d248473855689146680bf7c5b1829e088b04a21a46c412ece68e51873243ad53

    • SSDEEP

      49152:qdhALqrGBsNBk9/fw2BwfmM0f9btL2tL:dlsNi9XwgwfoBV2V

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks