Overview

overview

7

Static

static

3

e1eb6b9c5f...15.exe

windows7-x64

7

e1eb6b9c5f...15.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e1eb6b9c5f7ab5071f56c673fff61b0f0d9076760ebc0b02b57cb62a63d4be15

  • Size

    3.2MB

  • Sample

    240315-amjpgsde34

  • MD5

    bea32a1ffba4c45f4a0a86969383f7a8

  • SHA1

    e9b8a8d550ef9932048c50e848dc46c565c72aa3

  • SHA256

    e1eb6b9c5f7ab5071f56c673fff61b0f0d9076760ebc0b02b57cb62a63d4be15

  • SHA512

    3a1c830bc27d796748a8deccaccd0dcbf1566ee23750d04a3dadb08827a2120177d49b4a85cc9d848df3607e5150bc52dde630d2998cebbb86e45a0bae0689db

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpMbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      e1eb6b9c5f7ab5071f56c673fff61b0f0d9076760ebc0b02b57cb62a63d4be15

    • Size

      3.2MB

    • MD5

      bea32a1ffba4c45f4a0a86969383f7a8

    • SHA1

      e9b8a8d550ef9932048c50e848dc46c565c72aa3

    • SHA256

      e1eb6b9c5f7ab5071f56c673fff61b0f0d9076760ebc0b02b57cb62a63d4be15

    • SHA512

      3a1c830bc27d796748a8deccaccd0dcbf1566ee23750d04a3dadb08827a2120177d49b4a85cc9d848df3607e5150bc52dde630d2998cebbb86e45a0bae0689db

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpMbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks