Overview

overview

7

Static

static

3

ab24ac9da8...50.exe

windows7-x64

7

ab24ac9da8...50.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ab24ac9da8d916ef3883d758683f6cfe165a5db20f87b13efa940c7ebd75cc50

  • Size

    4.0MB

  • Sample

    240420-bq4z9sdf3v

  • MD5

    1a23a37f511b71eb320eaf8db6a53acf

  • SHA1

    50920209f735c332f356f4c36ed1645743e56aa3

  • SHA256

    ab24ac9da8d916ef3883d758683f6cfe165a5db20f87b13efa940c7ebd75cc50

  • SHA512

    246c3b6ac4e53ea9596f42161a742fd290625faaa2b5ae463133577de3c3e2603115c38a08383187c96bf9504cac2880e2930974acf831f0bd1daf1377ac4a59

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpKbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      ab24ac9da8d916ef3883d758683f6cfe165a5db20f87b13efa940c7ebd75cc50

    • Size

      4.0MB

    • MD5

      1a23a37f511b71eb320eaf8db6a53acf

    • SHA1

      50920209f735c332f356f4c36ed1645743e56aa3

    • SHA256

      ab24ac9da8d916ef3883d758683f6cfe165a5db20f87b13efa940c7ebd75cc50

    • SHA512

      246c3b6ac4e53ea9596f42161a742fd290625faaa2b5ae463133577de3c3e2603115c38a08383187c96bf9504cac2880e2930974acf831f0bd1daf1377ac4a59

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpKbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks