Overview

overview

7

Static

static

3

b8ec883de0...da.exe

windows7-x64

7

b8ec883de0...da.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    b8ec883de05b5d4c204e1452568f6dda

  • Size

    2.3MB

  • Sample

    240307-rhvpmaea5y

  • MD5

    b8ec883de05b5d4c204e1452568f6dda

  • SHA1

    bbaf33e5e82f05473a1b354fdeb1e36c2a3474fc

  • SHA256

    10e283c0e62b49a3290dfb6afacf7144744699d0b81c9f35b602820e4f2dfc89

  • SHA512

    1dcc7b92dab681908526c14b31436b1b92f9ae7378f8525f5836b419cc17d119a53ea3e51635c5478552afe8eba00f4dd517f312d913e67a415c30a1137ab773

  • SSDEEP

    24576:LzEeJQRlpMIFHDUTBIWri9zEeJQRlpMIFHDUTBIWrit59FF96X0JxQ+:LzEO4PVsiWczEO4PVsiWwZ

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      b8ec883de05b5d4c204e1452568f6dda

    • Size

      2.3MB

    • MD5

      b8ec883de05b5d4c204e1452568f6dda

    • SHA1

      bbaf33e5e82f05473a1b354fdeb1e36c2a3474fc

    • SHA256

      10e283c0e62b49a3290dfb6afacf7144744699d0b81c9f35b602820e4f2dfc89

    • SHA512

      1dcc7b92dab681908526c14b31436b1b92f9ae7378f8525f5836b419cc17d119a53ea3e51635c5478552afe8eba00f4dd517f312d913e67a415c30a1137ab773

    • SSDEEP

      24576:LzEeJQRlpMIFHDUTBIWri9zEeJQRlpMIFHDUTBIWrit59FF96X0JxQ+:LzEO4PVsiWczEO4PVsiWwZ

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks