Overview

overview

10

Static

static

3

Installer.exe

windows10-2004-x64

7

Installer.exe

windows11-21h2-x64

10

Resubmissions

22-03-2024 18:14

240322-wvgezshb61 10

21-03-2024 18:39

240321-xazaqsgg3y 10

21-03-2024 06:59

240321-hr7acaea83 10

20-03-2024 22:24

240320-2bfx1acg64 10

20-03-2024 19:58

240320-yp968ahe35 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Installer.zip

  • Size

    81.4MB

  • Sample

    240322-wvgezshb61

  • MD5

    c6a064707a909a7b47798db0d85c603b

  • SHA1

    aada44a120af681dd128491f320d00d063a8e7fc

  • SHA256

    3424ba3b4fd916dbd770d913b32f49ed7b5d7e52f5098a7c677756b5c350f518

  • SHA512

    c4197493e72e80eaa6549dace85e45393c22942049ba7ea891319d3ccaadf43fcdc701ecba59c5b51a485680ee8231a6ff99e5800ea51b15638692d0616cb8c3

  • SSDEEP

    1572864:HamZ9U07urguhA8cmDaK5uuJ81kMPoa63JPZ94NHJt8smcyclUbTlJN+8t3:HaGU0axDaKTJ81k0oh5x9CL8spycmbTz

Score
10/10
epsilonspywarestealer

Malware Config

Targets

    • Target

      Installer.exe

    • Size

      81.6MB

    • MD5

      699ab57fdb2ed5021cce783573fe87f2

    • SHA1

      f7de5129e30872b1b442c2e920acf5ecf7d82b04

    • SHA256

      15e615a58132493f1ddbd5ade984529015c1ef714e0d9801488e0667a7e28eba

    • SHA512

      279a596bcf8d9992a677038494209efaa1a0d57802c060559bcff7d9bc4c5e557e90097ba041e4c51e61766d6202872b210ac49a96d85401e65622e4ca7ce512

    • SSDEEP

      1572864:Rqu7449j35QnodNg3aH4AzCM3kVK+b2sofVhtNCD59j2MmWu2riFRl9k2Whu8:Rq149LmE34Av3kVKs2/9fN8v2MHu2eFK

    Score
    10/10
    epsilonspywarestealer

    • Epsilon Stealer

      Information stealer.

      stealerepsilon

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks