29aa5560ce5a45ffb136d9322fe199eb2c6b89cceceb61fcd0045663ad845665 | Triage

Sharing

General

Target

Seven.zip
Size

1.1MB
Sample

240429-h3hfcsde9v
MD5

e5e8b79b197b01cd98daabbbf4d48d5a
SHA1

4cb09ef27ce264f1a9b77135a27d4c7cf763417e
SHA256

29aa5560ce5a45ffb136d9322fe199eb2c6b89cceceb61fcd0045663ad845665
SHA512

b5bf0884e3ca980cdd3e3f9aea5bc2bedab3df4d0eb12fb934b1a4970de059082c66cbf2c3e85b7d555cd959011f08226e24825443f705f926add2a477167fa2
SSDEEP

24576:9l9ywhAIOImOiJ51xvWpmqZV/lGud+XlXHmhgwbad91jS4GOwM:k4e5fvwmqZrd+XlXHm9WdPjz

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  Seven.dll
- Size
  
  1.0MB
- MD5
  
  8caed01092150a7c7d51972233e87a76
- SHA1
  
  9d39cbb719beb5d7d00ef0b16012f0bb70bf73e4
- SHA256
  
  68c2611fa73f30dbab8d60385c8f361838ebadbb4c80b3392ca2421e9907ac91
- SHA512
  
  264f7423182224df63370b7c766233b59673b5d711719e301e8c5841bafebe8661e528627ec9a0829871f23495b26622bbb9480cd91b5f9cc4303cf724cc90b3
- SSDEEP
  
  24576:85A5tp1AM8id5lnbWDUqLVTlmudkZl5NYDAsvWpB13Augw:8IdfRb2UqXLdkZl5NYROpT3
Score

1^/10
behavioral1
- Target
  
  Seven.exe
- Size
  
  139KB
- MD5
  
  6503f847c3281ff85b304fc674b62580
- SHA1
  
  947536e0741c085f37557b7328b067ef97cb1a61
- SHA256
  
  afd7657f941024ef69ca34d1e61e640c5523b19b0fad4dcb1c9f1b01a6fa166f
- SHA512
  
  abc3b32a1cd7d0a60dd7354a9fcdff0bc37ec8a20bb2a8258353716d820f62d343c6ba9385ba893be0cca981bbb9ab4e189ccfeee6dd77cc0dc723e975532174
- SSDEEP
  
  3072:miS4omp03WQthI/9S3BZi08iRQ1G78IVn27bSfcJd8lto:miS4ompB9S3BZi0a1G78IVhcTct
Score

7^/10

spyware stealer
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops desktop.ini file(s)
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2