Overview

overview

7

Static

static

3

c24a07f5b6...dd.exe

windows7-x64

7

c24a07f5b6...dd.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    c24a07f5b692b56145555f84f2a883dd

  • Size

    864KB

  • Sample

    240312-djg82aee21

  • MD5

    c24a07f5b692b56145555f84f2a883dd

  • SHA1

    2398679916138931a18b405c623784e00f5392a7

  • SHA256

    09f47991335c1a8c80c9e58e7bdd16f5de70d1418392317c8bb3caa76edce5cb

  • SHA512

    9e9d3b812d9dbe5a0c9101f2d01b63b56dda9ce2ecd323c8b48af884acf6bcf0efb9c4352ac2a86647ca18e5ff9e9508d156395e6bc4d15a32519d2259e4f7f9

  • SSDEEP

    24576:aBDGQJOzYRq/lpF8c7wEeDbLnpMLxJJ+0C:23uYRc9QD/pixn

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      c24a07f5b692b56145555f84f2a883dd

    • Size

      864KB

    • MD5

      c24a07f5b692b56145555f84f2a883dd

    • SHA1

      2398679916138931a18b405c623784e00f5392a7

    • SHA256

      09f47991335c1a8c80c9e58e7bdd16f5de70d1418392317c8bb3caa76edce5cb

    • SHA512

      9e9d3b812d9dbe5a0c9101f2d01b63b56dda9ce2ecd323c8b48af884acf6bcf0efb9c4352ac2a86647ca18e5ff9e9508d156395e6bc4d15a32519d2259e4f7f9

    • SSDEEP

      24576:aBDGQJOzYRq/lpF8c7wEeDbLnpMLxJJ+0C:23uYRc9QD/pixn

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks