Overview

overview

7

Static

static

3

70923a86d9...04.exe

windows7-x64

7

70923a86d9...04.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    70923a86d9482fc8ab640907e0d47af575c597925fdb599ac10cbc1075ce1d04

  • Size

    3.0MB

  • Sample

    240420-29vh2sda5y

  • MD5

    be2234c150990775e1c873e7e6616739

  • SHA1

    83730d07f202de46c71210f23bab03b09a537179

  • SHA256

    70923a86d9482fc8ab640907e0d47af575c597925fdb599ac10cbc1075ce1d04

  • SHA512

    b92fa0345044253e5cb9d8f8e2eeadd48a293a43343b8622258bd1efe9e700d15c764ea2fc4c55ea1230a9a58cc1273a9abbf94ea9fd83e6b1d989cd5c666279

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bSqz8b6LNX:sxX7QnxrloE5dpUpEbVz8eLF

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      70923a86d9482fc8ab640907e0d47af575c597925fdb599ac10cbc1075ce1d04

    • Size

      3.0MB

    • MD5

      be2234c150990775e1c873e7e6616739

    • SHA1

      83730d07f202de46c71210f23bab03b09a537179

    • SHA256

      70923a86d9482fc8ab640907e0d47af575c597925fdb599ac10cbc1075ce1d04

    • SHA512

      b92fa0345044253e5cb9d8f8e2eeadd48a293a43343b8622258bd1efe9e700d15c764ea2fc4c55ea1230a9a58cc1273a9abbf94ea9fd83e6b1d989cd5c666279

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bSqz8b6LNX:sxX7QnxrloE5dpUpEbVz8eLF

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks