Overview

overview

7

Static

static

3

035d009a22...49.exe

windows7-x64

7

035d009a22...49.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    035d009a220b0371d8ebffc19280e5f185ea48c76e6abbac446bfbffbfb8ad49

  • Size

    3.0MB

  • Sample

    240420-wtxqksed53

  • MD5

    393a6da9775739cb73d93a30b26bc19e

  • SHA1

    5f239870438730bf52b59cffc5122bbfc7df4ef5

  • SHA256

    035d009a220b0371d8ebffc19280e5f185ea48c76e6abbac446bfbffbfb8ad49

  • SHA512

    4d8698de3473af07b27b70de8431378867ee738a1de77a5227f94e8bf7215c450493bc3adc47660796ee049490a00b6f3a7c01f6862a23c5baaec6b1b3730096

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bSqz8b6LNX:sxX7QnxrloE5dpUphbVz8eLF

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      035d009a220b0371d8ebffc19280e5f185ea48c76e6abbac446bfbffbfb8ad49

    • Size

      3.0MB

    • MD5

      393a6da9775739cb73d93a30b26bc19e

    • SHA1

      5f239870438730bf52b59cffc5122bbfc7df4ef5

    • SHA256

      035d009a220b0371d8ebffc19280e5f185ea48c76e6abbac446bfbffbfb8ad49

    • SHA512

      4d8698de3473af07b27b70de8431378867ee738a1de77a5227f94e8bf7215c450493bc3adc47660796ee049490a00b6f3a7c01f6862a23c5baaec6b1b3730096

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bSqz8b6LNX:sxX7QnxrloE5dpUphbVz8eLF

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks