Overview

overview

7

Static

static

3

7699b290b1...02.exe

windows7-x64

7

7699b290b1...02.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7699b290b13f69d61f8a8271e386f864193ea0d2c6f02a3d4855cfa30b1d7902

  • Size

    1.8MB

  • Sample

    240428-rkhsvahd99

  • MD5

    11be7beb7b5fcc11c8ffaf350a972921

  • SHA1

    1de6d04de5f3e92bc02d71d97eab87a86577d80c

  • SHA256

    7699b290b13f69d61f8a8271e386f864193ea0d2c6f02a3d4855cfa30b1d7902

  • SHA512

    2141bfd6d63fc8a06cd702d153746c40e3c5d4f331cb4c3deaf76691a30ef9dbece1732efcd9032429fbbf814394eb42e5384c2f02a89065e607465557626eea

  • SSDEEP

    49152:NKJ0WR7AFPyyiSruXKpk3WFDL9zxnSvpAHrVQ1/fSNvi:NKlBAFPydSS6W6X9ln8pAhQ1CNvi

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      7699b290b13f69d61f8a8271e386f864193ea0d2c6f02a3d4855cfa30b1d7902

    • Size

      1.8MB

    • MD5

      11be7beb7b5fcc11c8ffaf350a972921

    • SHA1

      1de6d04de5f3e92bc02d71d97eab87a86577d80c

    • SHA256

      7699b290b13f69d61f8a8271e386f864193ea0d2c6f02a3d4855cfa30b1d7902

    • SHA512

      2141bfd6d63fc8a06cd702d153746c40e3c5d4f331cb4c3deaf76691a30ef9dbece1732efcd9032429fbbf814394eb42e5384c2f02a89065e607465557626eea

    • SSDEEP

      49152:NKJ0WR7AFPyyiSruXKpk3WFDL9zxnSvpAHrVQ1/fSNvi:NKlBAFPydSS6W6X9ln8pAhQ1CNvi

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

System Information Discovery

3
T1082

Query Registry

3
T1012

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks