Overview

overview

7

Static

static

3

b58cc25c36...af.exe

windows7-x64

7

b58cc25c36...af.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b58cc25c36de8579388f87e25dcb7aaf

  • Size

    673KB

  • Sample

    240305-ys1f7aha39

  • MD5

    b58cc25c36de8579388f87e25dcb7aaf

  • SHA1

    89928ebfdf23aaf8c252d1d86c83352828c30a1a

  • SHA256

    fe155bc447f2b87eb2c71cc749cd33240391494b63233c63330a0efcb0950226

  • SHA512

    3f1694f275b43b336f5d93cbc99b67f1a5f04247fba10e9f934381ce89a2cc2c86b0c83b4914968c8c4b77bd32b43b921ec515c160ba103ceec9939e5906a3db

  • SSDEEP

    6144:fV1hHCqMd1E6dqi4py5Dr7PV1hHCqMd1E6dqi4py5Dr7r7X6Wi/IqLLxj+Zei/ya:fZiREy1DrrZiREy1DrtWL1DASh4SG

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      b58cc25c36de8579388f87e25dcb7aaf

    • Size

      673KB

    • MD5

      b58cc25c36de8579388f87e25dcb7aaf

    • SHA1

      89928ebfdf23aaf8c252d1d86c83352828c30a1a

    • SHA256

      fe155bc447f2b87eb2c71cc749cd33240391494b63233c63330a0efcb0950226

    • SHA512

      3f1694f275b43b336f5d93cbc99b67f1a5f04247fba10e9f934381ce89a2cc2c86b0c83b4914968c8c4b77bd32b43b921ec515c160ba103ceec9939e5906a3db

    • SSDEEP

      6144:fV1hHCqMd1E6dqi4py5Dr7PV1hHCqMd1E6dqi4py5Dr7r7X6Wi/IqLLxj+Zei/ya:fZiREy1DrrZiREy1DrtWL1DASh4SG

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks