Overview

overview

7

Static

static

3

c85cc4b4ff...06.exe

windows7-x64

7

c85cc4b4ff...06.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c85cc4b4ff1aa6c25e03453b807be350e3ac3fdf62d00a5787a6a1495212bd06

  • Size

    1.9MB

  • Sample

    240516-dtx28sab72

  • MD5

    3783e577e56e62f8eb44372745224567

  • SHA1

    8ade165c3b35b4aff25d3f0e2a7d763fb130ad66

  • SHA256

    c85cc4b4ff1aa6c25e03453b807be350e3ac3fdf62d00a5787a6a1495212bd06

  • SHA512

    5b7d7a8f61fd73b9f39b7ba95fe68e0283fdc348e7fcb0076ba736c796d8234a15d901aa6de7f920e33eefd6cfd220b06c95c640f031501b192cecf7be892300

  • SSDEEP

    24576:mebt1bdt1bwDJlJpMadaewsAj3ebt1bdt1bwDJlJpMadaewsAjGzEeA:mqxWMRlj3qxWMRljGzEl

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      c85cc4b4ff1aa6c25e03453b807be350e3ac3fdf62d00a5787a6a1495212bd06

    • Size

      1.9MB

    • MD5

      3783e577e56e62f8eb44372745224567

    • SHA1

      8ade165c3b35b4aff25d3f0e2a7d763fb130ad66

    • SHA256

      c85cc4b4ff1aa6c25e03453b807be350e3ac3fdf62d00a5787a6a1495212bd06

    • SHA512

      5b7d7a8f61fd73b9f39b7ba95fe68e0283fdc348e7fcb0076ba736c796d8234a15d901aa6de7f920e33eefd6cfd220b06c95c640f031501b192cecf7be892300

    • SSDEEP

      24576:mebt1bdt1bwDJlJpMadaewsAj3ebt1bdt1bwDJlJpMadaewsAjGzEeA:mqxWMRlj3qxWMRljGzEl

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks