Overview

overview

7

Static

static

3

32b2bd9293...18.exe

windows7-x64

7

32b2bd9293...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    32b2bd9293e455d5953cc7000a57e8a1640bae8f90560b5b6146c4fbe230fc18

  • Size

    3.6MB

  • Sample

    240422-zbct8sfh67

  • MD5

    8089adf6e33332d5c14885326e2ddef2

  • SHA1

    5ff44c3886e7657f1c738722a81ed3bd35e6009f

  • SHA256

    32b2bd9293e455d5953cc7000a57e8a1640bae8f90560b5b6146c4fbe230fc18

  • SHA512

    5a4d943fbbcc2f62267d2d573d33fb8537170670d7040a3e63d89de1d34d745ce3beeaf2623f9bd6ce8a9b1c927fb1b3ce35bb2d8994e540f7ef3a39ce26417c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bSqz8:sxX7QnxrloE5dpUp8bVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      32b2bd9293e455d5953cc7000a57e8a1640bae8f90560b5b6146c4fbe230fc18

    • Size

      3.6MB

    • MD5

      8089adf6e33332d5c14885326e2ddef2

    • SHA1

      5ff44c3886e7657f1c738722a81ed3bd35e6009f

    • SHA256

      32b2bd9293e455d5953cc7000a57e8a1640bae8f90560b5b6146c4fbe230fc18

    • SHA512

      5a4d943fbbcc2f62267d2d573d33fb8537170670d7040a3e63d89de1d34d745ce3beeaf2623f9bd6ce8a9b1c927fb1b3ce35bb2d8994e540f7ef3a39ce26417c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bSqz8:sxX7QnxrloE5dpUp8bVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks