Overview

overview

7

Static

static

3

f98c1af262...7f.exe

windows7-x64

7

f98c1af262...7f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f98c1af262abb64090e4244f439d8e99ae85b1c0021a352655c083456ca8d27f

  • Size

    3.9MB

  • Sample

    240527-fa99kagd8z

  • MD5

    5713f1174b76e026940b3b458767d29c

  • SHA1

    4ae680aba25b77f0d53a081ca3c2e28c95c2b391

  • SHA256

    f98c1af262abb64090e4244f439d8e99ae85b1c0021a352655c083456ca8d27f

  • SHA512

    15ff6e7ea298ec22d4be6e189a60988023b4555d6478e0192797bb7d42b18c07fb90b0501b1ce61d4485047daa3607caaf56b93c2fdb450dbb6c142b1d7ab775

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpubVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      f98c1af262abb64090e4244f439d8e99ae85b1c0021a352655c083456ca8d27f

    • Size

      3.9MB

    • MD5

      5713f1174b76e026940b3b458767d29c

    • SHA1

      4ae680aba25b77f0d53a081ca3c2e28c95c2b391

    • SHA256

      f98c1af262abb64090e4244f439d8e99ae85b1c0021a352655c083456ca8d27f

    • SHA512

      15ff6e7ea298ec22d4be6e189a60988023b4555d6478e0192797bb7d42b18c07fb90b0501b1ce61d4485047daa3607caaf56b93c2fdb450dbb6c142b1d7ab775

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpubVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks