Overview

overview

7

Static

static

3

828264dfed...75.exe

windows7-x64

7

828264dfed...75.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    828264dfedc47bdabd05d6cc3a4d7045649b207ec6a22c98d06a8d65d85b1b75

  • Size

    3.1MB

  • Sample

    240503-3vaqrsgg3v

  • MD5

    392d5bf8eace3ed628b749c341256133

  • SHA1

    7da6abf1470174ba563e4d7bd2436fd64b3cabc8

  • SHA256

    828264dfedc47bdabd05d6cc3a4d7045649b207ec6a22c98d06a8d65d85b1b75

  • SHA512

    7c92ce30443f7d3d57688fff1d5d8f4dcecb6eb2d3ce1871aaf9245552af758cf1a86f9a9c1deb33a016931741fcb611dc862998aa2bf6402fc1d0bb5cb9379b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpXbVz8eLFc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      828264dfedc47bdabd05d6cc3a4d7045649b207ec6a22c98d06a8d65d85b1b75

    • Size

      3.1MB

    • MD5

      392d5bf8eace3ed628b749c341256133

    • SHA1

      7da6abf1470174ba563e4d7bd2436fd64b3cabc8

    • SHA256

      828264dfedc47bdabd05d6cc3a4d7045649b207ec6a22c98d06a8d65d85b1b75

    • SHA512

      7c92ce30443f7d3d57688fff1d5d8f4dcecb6eb2d3ce1871aaf9245552af758cf1a86f9a9c1deb33a016931741fcb611dc862998aa2bf6402fc1d0bb5cb9379b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqz8b6LNXJqI:sxX7QnxrloE5dpUpXbVz8eLFc

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks