Overview

overview

8

Static

static

3

paypalmoneygen.exe

windows7-x64

1

paypalmoneygen.exe

windows10-2004-x64

8

Resubmissions

09/03/2024, 23:39

240309-3nca1seb46 8

09/03/2024, 23:35

240309-3lfknaee9s 8

09/03/2024, 23:31

240309-3hvkeadh98 8

09/03/2024, 23:29

240309-3gspesdh76 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    paypalmoneygen.exe

  • Size

    409KB

  • Sample

    240309-3gspesdh76

  • MD5

    aab68536e0cfbb3c3149a02021a09206

  • SHA1

    1f2a2e8517d764281b0e076cab5c98c4b9a2cb94

  • SHA256

    4364fdf8e6b7b58cbfc34aab3a86368c1c73467ec5d74847b07d72b50a99d3d7

  • SHA512

    e622a0797e3455fc213c2078ccc1cc5b769cd09d94d3c4acb140ca87fe607485ac919be83e1d7661199383bee0f3471a5653e6ef9800fde94230b7e3d3311659

  • SSDEEP

    12288:wORqrdkTyk4Osir2upORqrdOOsir2upORqrdHOsir2u:jiKJFfr2Pixfr2Pi4fr2

Score
8/10
persistence

Malware Config

Targets

    • Target

      paypalmoneygen.exe

    • Size

      409KB

    • MD5

      aab68536e0cfbb3c3149a02021a09206

    • SHA1

      1f2a2e8517d764281b0e076cab5c98c4b9a2cb94

    • SHA256

      4364fdf8e6b7b58cbfc34aab3a86368c1c73467ec5d74847b07d72b50a99d3d7

    • SHA512

      e622a0797e3455fc213c2078ccc1cc5b769cd09d94d3c4acb140ca87fe607485ac919be83e1d7661199383bee0f3471a5653e6ef9800fde94230b7e3d3311659

    • SSDEEP

      12288:wORqrdkTyk4Osir2upORqrdOOsir2upORqrdHOsir2u:jiKJFfr2Pixfr2Pi4fr2

    Score
    8/10
    persistence

    • Modifies AppInit DLL entries

      persistence

    • Modifies Installed Components in the registry

      persistence

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks