Overview

overview

7

Static

static

3

c44dc0b47b...72.exe

windows7-x64

7

c44dc0b47b...72.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c44dc0b47baa5cf2e0d61ea3dacd8d2104f4a6df2114922a25811149fe459c72

  • Size

    3.0MB

  • Sample

    240526-c7w7esca81

  • MD5

    2c602f25023f515858ec1ac290ea2300

  • SHA1

    f46959cea0469f325b293310b7e87e4a7396b889

  • SHA256

    c44dc0b47baa5cf2e0d61ea3dacd8d2104f4a6df2114922a25811149fe459c72

  • SHA512

    0e032ffeedd589d1850dd4387eea8a22be815efeefab0dceb01e505b0c7bfbdc8076d8133d1ab97945f08e8c2bef36108a54229fa8d4f84028c010e3ccb6ceb3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bSqz8b6LNX:sxX7QnxrloE5dpUpBbVz8eLF

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      c44dc0b47baa5cf2e0d61ea3dacd8d2104f4a6df2114922a25811149fe459c72

    • Size

      3.0MB

    • MD5

      2c602f25023f515858ec1ac290ea2300

    • SHA1

      f46959cea0469f325b293310b7e87e4a7396b889

    • SHA256

      c44dc0b47baa5cf2e0d61ea3dacd8d2104f4a6df2114922a25811149fe459c72

    • SHA512

      0e032ffeedd589d1850dd4387eea8a22be815efeefab0dceb01e505b0c7bfbdc8076d8133d1ab97945f08e8c2bef36108a54229fa8d4f84028c010e3ccb6ceb3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bSqz8b6LNX:sxX7QnxrloE5dpUpBbVz8eLF

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks