Overview

overview

7

Static

static

3

virussign....b0.exe

windows7-x64

7

virussign....b0.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    virussign.com_c90d14eaff4b09b5869474f694f7aab0.vir

  • Size

    625KB

  • Sample

    240602-mktswsbb99

  • MD5

    c90d14eaff4b09b5869474f694f7aab0

  • SHA1

    c8251e730a095ea5112174beea98d811260e0fd6

  • SHA256

    c561dd5cff0e2f0a367126939bf255725088eb3f00ad00da85fcd83fc394c42c

  • SHA512

    5faa0bdee586c3f1b17c0768aaa8b2bc24677c6816a1d1d7b55f3524da983daa3364257c84b8f03abfc2f25703aa213c86495fe00cbb6d897fdd868b50c4b383

  • SSDEEP

    12288:o28C4+/x8J7ct3z5htUcQ1MlhrmQgwwJzt5+7fyZkCtXFiWZF/3o:V8C4+mIJz5IcuMlQHJxrDiSi

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      virussign.com_c90d14eaff4b09b5869474f694f7aab0.vir

    • Size

      625KB

    • MD5

      c90d14eaff4b09b5869474f694f7aab0

    • SHA1

      c8251e730a095ea5112174beea98d811260e0fd6

    • SHA256

      c561dd5cff0e2f0a367126939bf255725088eb3f00ad00da85fcd83fc394c42c

    • SHA512

      5faa0bdee586c3f1b17c0768aaa8b2bc24677c6816a1d1d7b55f3524da983daa3364257c84b8f03abfc2f25703aa213c86495fe00cbb6d897fdd868b50c4b383

    • SSDEEP

      12288:o28C4+/x8J7ct3z5htUcQ1MlhrmQgwwJzt5+7fyZkCtXFiWZF/3o:V8C4+mIJz5IcuMlQHJxrDiSi

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks