Overview

overview

7

Static

static

3

cfb579df4e...83.exe

windows7-x64

7

cfb579df4e...83.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    cfb579df4e331c8e2f5651eaf04bbb3c662fd1d410265c94c22ef399b0958b83

  • Size

    3.1MB

  • Sample

    240603-eknb4sae8w

  • MD5

    66c1a7edc75689ad40390cafbcfc5213

  • SHA1

    cd314f987fcb9bd6549a4f6a6dc5c080111e1c92

  • SHA256

    cfb579df4e331c8e2f5651eaf04bbb3c662fd1d410265c94c22ef399b0958b83

  • SHA512

    3505627e9c0434bb357d36cf74e27fe1fbf3b23369740d46548ea16f916035809a60ebf3a896a3f228e04350475de632416c96bdda91aa55116b97bb193b1956

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bSqz8b6LNXJqI20:sxX7QnxrloE5dpUpdbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      cfb579df4e331c8e2f5651eaf04bbb3c662fd1d410265c94c22ef399b0958b83

    • Size

      3.1MB

    • MD5

      66c1a7edc75689ad40390cafbcfc5213

    • SHA1

      cd314f987fcb9bd6549a4f6a6dc5c080111e1c92

    • SHA256

      cfb579df4e331c8e2f5651eaf04bbb3c662fd1d410265c94c22ef399b0958b83

    • SHA512

      3505627e9c0434bb357d36cf74e27fe1fbf3b23369740d46548ea16f916035809a60ebf3a896a3f228e04350475de632416c96bdda91aa55116b97bb193b1956

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bSqz8b6LNXJqI20:sxX7QnxrloE5dpUpdbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks