Overview

overview

7

Static

static

3

b55757d7e8...4a.exe

windows7-x64

7

b55757d7e8...4a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b55757d7e8c498a3fb1c39db1f1c6f4a

  • Size

    3.6MB

  • Sample

    240305-wthawsdc81

  • MD5

    b55757d7e8c498a3fb1c39db1f1c6f4a

  • SHA1

    169de830c7bf9fc297ad7e63170b4ad6a46fa26e

  • SHA256

    7d646a9046fe24c1a61af2d990618f2a1e6f75f73b34be3f967a670439187568

  • SHA512

    7b8db6a3e8fa1f0a5c1b0615bb6cbad0c46d648cb2697919f09c525601c963f8052c8ab8d0ed4aac910414944eb9661e19a86a49f0bfc9fdc5ba2220cbc65a9f

  • SSDEEP

    49152:fY9uvFqv9M1oJdXN0BMOwLloBrughqnstLet3LymWWhipXq:e79XJdXN0B7+sTqnstLE2o

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      b55757d7e8c498a3fb1c39db1f1c6f4a

    • Size

      3.6MB

    • MD5

      b55757d7e8c498a3fb1c39db1f1c6f4a

    • SHA1

      169de830c7bf9fc297ad7e63170b4ad6a46fa26e

    • SHA256

      7d646a9046fe24c1a61af2d990618f2a1e6f75f73b34be3f967a670439187568

    • SHA512

      7b8db6a3e8fa1f0a5c1b0615bb6cbad0c46d648cb2697919f09c525601c963f8052c8ab8d0ed4aac910414944eb9661e19a86a49f0bfc9fdc5ba2220cbc65a9f

    • SSDEEP

      49152:fY9uvFqv9M1oJdXN0BMOwLloBrughqnstLet3LymWWhipXq:e79XJdXN0B7+sTqnstLE2o

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks