Overview

overview

7

Static

static

3

9473443d72...ac.exe

windows7-x64

7

9473443d72...ac.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9473443d72972c709118a00ca073e470bb69a0d2d479e3c1ce3c4adced7db1ac

  • Size

    3.2MB

  • Sample

    240523-a3cwwafd24

  • MD5

    0a5e46c832c8640a8806c38a90d81e0b

  • SHA1

    300910e19197886b5c0cb240df9e4ae2da1035fc

  • SHA256

    9473443d72972c709118a00ca073e470bb69a0d2d479e3c1ce3c4adced7db1ac

  • SHA512

    8f7a8a3f4d443c3f30ef88549f27b8b580d270892fae699ec156a5d4dbebcbbfffc7e396cfb9232166eba88194398f1961b7a2adb5c72a70ebef5d073d8e7f44

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp2bVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      9473443d72972c709118a00ca073e470bb69a0d2d479e3c1ce3c4adced7db1ac

    • Size

      3.2MB

    • MD5

      0a5e46c832c8640a8806c38a90d81e0b

    • SHA1

      300910e19197886b5c0cb240df9e4ae2da1035fc

    • SHA256

      9473443d72972c709118a00ca073e470bb69a0d2d479e3c1ce3c4adced7db1ac

    • SHA512

      8f7a8a3f4d443c3f30ef88549f27b8b580d270892fae699ec156a5d4dbebcbbfffc7e396cfb9232166eba88194398f1961b7a2adb5c72a70ebef5d073d8e7f44

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUp2bVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks