Overview

overview

7

Static

static

3

4ae2c05af4...98.exe

windows7-x64

7

4ae2c05af4...98.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4ae2c05af43eb24f22f4bf12bf6ef34566a9579fed9eb2dbe9efad870c177a98

  • Size

    123KB

  • Sample

    240416-1kjvkseh6w

  • MD5

    288759a2ddb0ba4684214fe26a47b354

  • SHA1

    d8a28e1baf9b0287c8cd353f70d0846bc8d5883a

  • SHA256

    4ae2c05af43eb24f22f4bf12bf6ef34566a9579fed9eb2dbe9efad870c177a98

  • SHA512

    c858fd2070c1bc51ee7e128cb783a515827c093e39d46ea8e9426e1eb777f9ed8742c4f6e49ce446e1f316d405dbefb101b6605bef71b5d7af320aeb39d14033

  • SSDEEP

    1536:KcNjQlsWjcd+xzl7SMQ2AeoZNMOoaBlw+pC43HXgQZxTYFjh3v9kzFy90TQpdze7:1jr87Sb2zorlUj431a93v0TMp9e6LCGy

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      4ae2c05af43eb24f22f4bf12bf6ef34566a9579fed9eb2dbe9efad870c177a98

    • Size

      123KB

    • MD5

      288759a2ddb0ba4684214fe26a47b354

    • SHA1

      d8a28e1baf9b0287c8cd353f70d0846bc8d5883a

    • SHA256

      4ae2c05af43eb24f22f4bf12bf6ef34566a9579fed9eb2dbe9efad870c177a98

    • SHA512

      c858fd2070c1bc51ee7e128cb783a515827c093e39d46ea8e9426e1eb777f9ed8742c4f6e49ce446e1f316d405dbefb101b6605bef71b5d7af320aeb39d14033

    • SSDEEP

      1536:KcNjQlsWjcd+xzl7SMQ2AeoZNMOoaBlw+pC43HXgQZxTYFjh3v9kzFy90TQpdze7:1jr87Sb2zorlUj431a93v0TMp9e6LCGy

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks