Overview

overview

7

Static

static

3

bc24f3b185...74.exe

windows7-x64

7

bc24f3b185...74.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    bc24f3b1854594bc7140884bf3fac9a5f616077e72d1d018b87c11a36b1b8874

  • Size

    1.8MB

  • Sample

    240419-rkp7xsed78

  • MD5

    1bcdcf3f70c8cf626e1d07ddaccf6f77

  • SHA1

    5a986f9f2276468a3c0c577e3f2723688f0abfeb

  • SHA256

    bc24f3b1854594bc7140884bf3fac9a5f616077e72d1d018b87c11a36b1b8874

  • SHA512

    60570a14bc60069a35c95f0d496696968137cd99c6e2af033f9a3fa5556751b1a6a7537f97243be0d9cc13f2516975837f5b2f23ffe99b351f03d1beb34801b6

  • SSDEEP

    49152:Gx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WA0gDUYmvFur31yAipQCtXxc0H:GvbjVkjjCAzJSU7dG1yfpVBlH

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      bc24f3b1854594bc7140884bf3fac9a5f616077e72d1d018b87c11a36b1b8874

    • Size

      1.8MB

    • MD5

      1bcdcf3f70c8cf626e1d07ddaccf6f77

    • SHA1

      5a986f9f2276468a3c0c577e3f2723688f0abfeb

    • SHA256

      bc24f3b1854594bc7140884bf3fac9a5f616077e72d1d018b87c11a36b1b8874

    • SHA512

      60570a14bc60069a35c95f0d496696968137cd99c6e2af033f9a3fa5556751b1a6a7537f97243be0d9cc13f2516975837f5b2f23ffe99b351f03d1beb34801b6

    • SSDEEP

      49152:Gx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WA0gDUYmvFur31yAipQCtXxc0H:GvbjVkjjCAzJSU7dG1yfpVBlH

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks