Overview

overview

8

Static

static

3

Test.exe

windows7-x64

1

Test.exe

windows10-2004-x64

8

Resubmissions

25/04/2024, 20:58

240425-zsgvhseg2s 8

25/04/2024, 17:30

240425-v3jdwadb49 8

25/04/2024, 17:02

240425-vkan1sch88 8

25/04/2024, 16:52

240425-vdgtrach56 8

25/04/2024, 16:46

240425-vaevzscg6v 8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Test.exe

  • Size

    9.2MB

  • Sample

    240425-vaevzscg6v

  • MD5

    b01154c983274709022b794cf81f08e0

  • SHA1

    5303aa929121973e4aad145137733081adbe863e

  • SHA256

    0f96ad76723af755fc1a21af4f9b953920419105108508364b5387001381b962

  • SHA512

    c2070c0d032d93fa8ec440c4a87ab9d35cd28becd9f259bb84ecc05d3711d278dbc11433fa4fca4a50928b6cbe884acc20f8a817287aeedd18f57fbdbbb96ebb

  • SSDEEP

    196608:whEtL1ZUDdDwGcsAgectcGfcY3gtywIf7E5MsWSESkYeu1ODU:tHUDdk3meWcGfdlYM0KuGU

Score
8/10
pyinstallerspywarestealer

Malware Config

Targets

    • Target

      Test.exe

    • Size

      9.2MB

    • MD5

      b01154c983274709022b794cf81f08e0

    • SHA1

      5303aa929121973e4aad145137733081adbe863e

    • SHA256

      0f96ad76723af755fc1a21af4f9b953920419105108508364b5387001381b962

    • SHA512

      c2070c0d032d93fa8ec440c4a87ab9d35cd28becd9f259bb84ecc05d3711d278dbc11433fa4fca4a50928b6cbe884acc20f8a817287aeedd18f57fbdbbb96ebb

    • SSDEEP

      196608:whEtL1ZUDdDwGcsAgectcGfcY3gtywIf7E5MsWSESkYeu1ODU:tHUDdk3meWcGfdlYM0KuGU

    Score
    8/10
    spywarestealer

    • Drops file in Drivers directory

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks