Overview

overview

7

Static

static

3

383861ea4d...99.exe

windows7-x64

7

383861ea4d...99.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    383861ea4ddcdd44f3bd88a54bac775c8fb93b8ab4b769fd439314c3661df299

  • Size

    4.1MB

  • Sample

    240522-y961asfd81

  • MD5

    097aff1595dcd066af8ab4fc543ff2d4

  • SHA1

    dbbdd0fc0fa5458279b88e7fa760053f591e8ccb

  • SHA256

    383861ea4ddcdd44f3bd88a54bac775c8fb93b8ab4b769fd439314c3661df299

  • SHA512

    fabe8d4c7410edf25b07dce5c4f24ff67697d36ba6f9d9e11757bfc662e86a46396c739554afc4af0859030749a2f96e1da07e1d38eeea6d667014d0a8c0f64f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpYbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      383861ea4ddcdd44f3bd88a54bac775c8fb93b8ab4b769fd439314c3661df299

    • Size

      4.1MB

    • MD5

      097aff1595dcd066af8ab4fc543ff2d4

    • SHA1

      dbbdd0fc0fa5458279b88e7fa760053f591e8ccb

    • SHA256

      383861ea4ddcdd44f3bd88a54bac775c8fb93b8ab4b769fd439314c3661df299

    • SHA512

      fabe8d4c7410edf25b07dce5c4f24ff67697d36ba6f9d9e11757bfc662e86a46396c739554afc4af0859030749a2f96e1da07e1d38eeea6d667014d0a8c0f64f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBTB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpYbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks