Overview

overview

8

Static

static

3

bc309c7254...3d.exe

windows7-x64

8

bc309c7254...3d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bc309c72547ef530285c3e81769ccf3d

  • Size

    3.5MB

  • Sample

    240309-s7g1hacb51

  • MD5

    bc309c72547ef530285c3e81769ccf3d

  • SHA1

    97b4099bd520d9426d869dc31ca04c7fb0b4c978

  • SHA256

    f416c5d91ac2053b0878d9c06ae29d1747919a9c9345a121dceabcf698bd415a

  • SHA512

    4391917ba2cd910e6c8a7da75e993739ee7cb77464f554c92dfe15c65f811be935c5eae633d890edeea7b096d09c1e8d2a59f3d27ddc90caec40b65a18fe392c

  • SSDEEP

    98304:zRS6nfSOQZOt+CW+7EELhF3gxpNOf2k2Y/ze0g:zkj8NBFwxpNOuk250g

Score
8/10
evasionspywarestealer

Malware Config

Targets

    • Target

      bc309c72547ef530285c3e81769ccf3d

    • Size

      3.5MB

    • MD5

      bc309c72547ef530285c3e81769ccf3d

    • SHA1

      97b4099bd520d9426d869dc31ca04c7fb0b4c978

    • SHA256

      f416c5d91ac2053b0878d9c06ae29d1747919a9c9345a121dceabcf698bd415a

    • SHA512

      4391917ba2cd910e6c8a7da75e993739ee7cb77464f554c92dfe15c65f811be935c5eae633d890edeea7b096d09c1e8d2a59f3d27ddc90caec40b65a18fe392c

    • SSDEEP

      98304:zRS6nfSOQZOt+CW+7EELhF3gxpNOf2k2Y/ze0g:zkj8NBFwxpNOuk250g

    Score
    8/10
    evasionspywarestealer

    • Stops running service(s)

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks