Overview

overview

7

Static

static

3

6d7d84d45e...b1.exe

windows7-x64

7

6d7d84d45e...b1.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6d7d84d45ef11ef3778a05eeece0d4a0d23a4d3c93060a46338ee3b4c961c2b1

  • Size

    3.1MB

  • Sample

    240419-2n6zyshe43

  • MD5

    3197ff8e4e215a3160ac7dc8259af10c

  • SHA1

    36596a2ec3bfe545a1e4c7ca5e9c6f2f3b839045

  • SHA256

    6d7d84d45ef11ef3778a05eeece0d4a0d23a4d3c93060a46338ee3b4c961c2b1

  • SHA512

    7e80b5f7974b9b68b9673686e4167723f4a67a5dc032bc3433860d7857abe171c215e92801bf1d570adfc8e766972698fa91938a69e638cb0306e63d413f619f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUp1bVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      6d7d84d45ef11ef3778a05eeece0d4a0d23a4d3c93060a46338ee3b4c961c2b1

    • Size

      3.1MB

    • MD5

      3197ff8e4e215a3160ac7dc8259af10c

    • SHA1

      36596a2ec3bfe545a1e4c7ca5e9c6f2f3b839045

    • SHA256

      6d7d84d45ef11ef3778a05eeece0d4a0d23a4d3c93060a46338ee3b4c961c2b1

    • SHA512

      7e80b5f7974b9b68b9673686e4167723f4a67a5dc032bc3433860d7857abe171c215e92801bf1d570adfc8e766972698fa91938a69e638cb0306e63d413f619f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUp1bVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks