e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

e211e2beb4...43.exe

windows7-x64

7

e211e2beb4...43.exe

windows10-2004-x64

1

Sharing

General

Target

e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43
Size

1.2MB
Sample

240524-ze3j3aac8t
MD5

1e2ea6a68edb54fc53d41c21828f9147
SHA1

208749feb57437c039da6786a9f4b8c182ca7367
SHA256

e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43
SHA512

6548ae3185a40ac2cd7ed7cbff86573d44610c7d8561e1e897f3d88b2b8c21e9435e963196964acb6ff3da059e2628eeeee22d8618555e36d28e6c84086f1ea3
SSDEEP

24576:9TN9Yj3Htgtozpyj4mIexasqjnhMgeiCl7G0nehbGZpbD:9gHyELexuDmg27RnWGj

Score

7^/10

spyware stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43.exe

Resource

win7-20231129-en

spyware stealer

windows7-x64

16 signatures

150 seconds

Behavioral task

behavioral2

Sample

e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43
- Size
  
  1.2MB
- MD5
  
  1e2ea6a68edb54fc53d41c21828f9147
- SHA1
  
  208749feb57437c039da6786a9f4b8c182ca7367
- SHA256
  
  e211e2beb483402a7f769691c7981e720da14290b76fe24919df7575b3503b43
- SHA512
  
  6548ae3185a40ac2cd7ed7cbff86573d44610c7d8561e1e897f3d88b2b8c21e9435e963196964acb6ff3da059e2628eeeee22d8618555e36d28e6c84086f1ea3
- SSDEEP
  
  24576:9TN9Yj3Htgtozpyj4mIexasqjnhMgeiCl7G0nehbGZpbD:9gHyELexuDmg27RnWGj
Score

7^/10

spyware stealer
- Executes dropped EXE
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy