Overview

overview

7

Static

static

3

35fc577d08...10.exe

windows7-x64

7

35fc577d08...10.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    35fc577d08b6838ab6564b16c9a0b4add1e719928b3f248934c92feaca8f8d10

  • Size

    395KB

  • Sample

    240420-zndmasab8v

  • MD5

    4707ded937799b83746a2fa7faa30746

  • SHA1

    ec2bd405337816ef74961eef013c025834b652e4

  • SHA256

    35fc577d08b6838ab6564b16c9a0b4add1e719928b3f248934c92feaca8f8d10

  • SHA512

    92f887edf42bfef7b358f04223f5b1a6ee041f4606beacba45402b881b485f2797e123c4d82ef1741ef7d0e2e4225bc260054af47d03b53f093e512a7802d11a

  • SSDEEP

    6144:hZMazqkZ3BIHENrrEjlA1ihhYMKn6BRhzjPuMAXkObo1SS8DIlpkzhmYF84c/Kku:hS0qkZRIFj21ihdVRpLAUJ1c1j93k03

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      35fc577d08b6838ab6564b16c9a0b4add1e719928b3f248934c92feaca8f8d10

    • Size

      395KB

    • MD5

      4707ded937799b83746a2fa7faa30746

    • SHA1

      ec2bd405337816ef74961eef013c025834b652e4

    • SHA256

      35fc577d08b6838ab6564b16c9a0b4add1e719928b3f248934c92feaca8f8d10

    • SHA512

      92f887edf42bfef7b358f04223f5b1a6ee041f4606beacba45402b881b485f2797e123c4d82ef1741ef7d0e2e4225bc260054af47d03b53f093e512a7802d11a

    • SSDEEP

      6144:hZMazqkZ3BIHENrrEjlA1ihhYMKn6BRhzjPuMAXkObo1SS8DIlpkzhmYF84c/Kku:hS0qkZRIFj21ihdVRpLAUJ1c1j93k03

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks