Overview

overview

7

Static

static

3

31a47ff3a5...74.exe

windows7-x64

7

31a47ff3a5...74.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31a47ff3a5159eccf2e48943cbc855160f26e115359748faa2ce973b9a518674

  • Size

    648KB

  • Sample

    240428-ypg6fafg27

  • MD5

    39765ea8ef86b000ab2c029dd8a5c355

  • SHA1

    da654157e43e7f39ca30559272d6588973383ed0

  • SHA256

    31a47ff3a5159eccf2e48943cbc855160f26e115359748faa2ce973b9a518674

  • SHA512

    bab015272126e727063005982af8f41832a70a085a1c093a46b34d4d3d4dbdbafb9425d4d4acc642fa3135e4948337b9f2b3b3b04e441d75bac2333e6ae72227

  • SSDEEP

    12288:qqz2DWUV+lCFcD1goThydrWUeB+QChZsrwbebPeVmfCUqVfZbdbHF:Dz2DWWUOoTqy8QCYrLLeYKUML

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      31a47ff3a5159eccf2e48943cbc855160f26e115359748faa2ce973b9a518674

    • Size

      648KB

    • MD5

      39765ea8ef86b000ab2c029dd8a5c355

    • SHA1

      da654157e43e7f39ca30559272d6588973383ed0

    • SHA256

      31a47ff3a5159eccf2e48943cbc855160f26e115359748faa2ce973b9a518674

    • SHA512

      bab015272126e727063005982af8f41832a70a085a1c093a46b34d4d3d4dbdbafb9425d4d4acc642fa3135e4948337b9f2b3b3b04e441d75bac2333e6ae72227

    • SSDEEP

      12288:qqz2DWUV+lCFcD1goThydrWUeB+QChZsrwbebPeVmfCUqVfZbdbHF:Dz2DWWUOoTqy8QCYrLLeYKUML

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

1
T1552

Credentials In Files

1
T1552.001

Discovery

System Information Discovery

3
T1082

Query Registry

3
T1012

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Data from Local System

1
T1005

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks