ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

ed012cea4b...d8.exe

windows7-x64

1

ed012cea4b...d8.exe

windows10-2004-x64

7

Sharing

General

Target

ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8
Size

5.5MB
Sample

240523-e6n6jadh51
MD5

cb4772af8906a6dfc2d67003c8e09dc8
SHA1

3d9198f9fc950400ca7f031156732608e1a6aacc
SHA256

ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8
SHA512

2aabbd4c6f0dc15ef4d7757c90e7f4af5dad433f986c387a50353f7c116eefd912ab43d1558b2c2d9e019a02089d02e074461c0b510961492fe0faaa949749f5
SSDEEP

49152:GEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGff:8AI5pAdVJn9tbnR1VgBVm1qo4w

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8.exe

Resource

win7-20240508-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8.exe

Resource

win10v2004-20240426-en

spyware stealer

windows10-2004-x64

18 signatures

150 seconds

Malware Config

Targets

- Target
  
  ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8
- Size
  
  5.5MB
- MD5
  
  cb4772af8906a6dfc2d67003c8e09dc8
- SHA1
  
  3d9198f9fc950400ca7f031156732608e1a6aacc
- SHA256
  
  ed012cea4b23ee4b76f9ea71b99f86ea3c0a2e2ff4a5ebeeac02a2cf3e426dd8
- SHA512
  
  2aabbd4c6f0dc15ef4d7757c90e7f4af5dad433f986c387a50353f7c116eefd912ab43d1558b2c2d9e019a02089d02e074461c0b510961492fe0faaa949749f5
- SSDEEP
  
  49152:GEFbqzA/PvIGDFr9AtwA3PlpIgong0yTI+q47W1Ln9tJEUxDG0BYYrLA50IHLGff:8AI5pAdVJn9tbnR1VgBVm1qo4w
Score

7^/10

spyware stealer
- Executes dropped EXE
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Query Registry

Peripheral Device Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy