Overview

overview

7

Static

static

3

3078d5d249...3f.exe

windows7-x64

7

3078d5d249...3f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3078d5d24969680d13e1ea31eea1a84307f7db4bd4087c9cbb7938b02a069f3f

  • Size

    166KB

  • Sample

    240314-w6p69sbe9y

  • MD5

    d6ceb4dcadbc4ba7656f2ca5844503d1

  • SHA1

    fe66df8a825aeda6831e89b3d97e5482192443f1

  • SHA256

    3078d5d24969680d13e1ea31eea1a84307f7db4bd4087c9cbb7938b02a069f3f

  • SHA512

    f73fe39f5524eefa96400670e923643477d9431c36a16ae57196e120e23221ae38d0b0298600d1dfc0be442dbdcea227ee013aeb7c635975ecdba80245e932f0

  • SSDEEP

    3072:ZRpAyazIliazTKN5IQZ8IW80mw2Zl+YgGowsdC0XEQ3l8S0Iucu2V:xZ8azo5IQZ8IW8YNmsdB3b0IucjV

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      3078d5d24969680d13e1ea31eea1a84307f7db4bd4087c9cbb7938b02a069f3f

    • Size

      166KB

    • MD5

      d6ceb4dcadbc4ba7656f2ca5844503d1

    • SHA1

      fe66df8a825aeda6831e89b3d97e5482192443f1

    • SHA256

      3078d5d24969680d13e1ea31eea1a84307f7db4bd4087c9cbb7938b02a069f3f

    • SHA512

      f73fe39f5524eefa96400670e923643477d9431c36a16ae57196e120e23221ae38d0b0298600d1dfc0be442dbdcea227ee013aeb7c635975ecdba80245e932f0

    • SSDEEP

      3072:ZRpAyazIliazTKN5IQZ8IW80mw2Zl+YgGowsdC0XEQ3l8S0Iucu2V:xZ8azo5IQZ8IW8YNmsdB3b0IucjV

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks