Overview

overview

7

Static

static

1

EpsilonFruit.rar

windows10-2004-x64

7

Resubmissions

08/04/2024, 15:25

240408-st4x4sce66 7

08/04/2024, 15:21

240408-srr6jacd95 3

Sharing

Copy URL Twitter E-mail

General

  • Target

    EpsilonFruit.rar

  • Size

    67.5MB

  • Sample

    240408-st4x4sce66

  • MD5

    161ce22efad132fd6192494901f2835c

  • SHA1

    9730bcf6fc67ec6f4b77deabbae5d70bf0ea174f

  • SHA256

    1b56434ba20363cf17445dead657edb5e5afb85167ef0a6f99030e3cab67bfc4

  • SHA512

    94e19e49e18812eb1e2de76aecd6253eb5d3d56413a612bb6b2eb8e4fc848fdf6706ae3c4a47f36b9a25a9bb6b4607f41c91a78abf58acb27eb3a8352b84c90a

  • SSDEEP

    1572864:b8d7+ZfSszKHBIDnWhsxwYcq6M+vkpwaKnQxFnxPp98z2S:Ad7ARzKH+bworb6MJqKnxPp98t

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      EpsilonFruit.rar

    • Size

      67.5MB

    • MD5

      161ce22efad132fd6192494901f2835c

    • SHA1

      9730bcf6fc67ec6f4b77deabbae5d70bf0ea174f

    • SHA256

      1b56434ba20363cf17445dead657edb5e5afb85167ef0a6f99030e3cab67bfc4

    • SHA512

      94e19e49e18812eb1e2de76aecd6253eb5d3d56413a612bb6b2eb8e4fc848fdf6706ae3c4a47f36b9a25a9bb6b4607f41c91a78abf58acb27eb3a8352b84c90a

    • SSDEEP

      1572864:b8d7+ZfSszKHBIDnWhsxwYcq6M+vkpwaKnQxFnxPp98z2S:Ad7ARzKH+bworb6MJqKnxPp98t

    Score
    7/10
    spywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks