General

  • Target

    FiveGuards-Spoofer.bat

  • Size

    46KB

  • Sample

    240603-ka4h8sha5t

  • MD5

    3187c6692aab27b174847c236f593593

  • SHA1

    e513aa3dca329b845be357372aab03620b66582d

  • SHA256

    ff60ef4a6204c915969009fa416d8e8a15b69f33c89ccde2b880aef529701c9e

  • SHA512

    125928222bac7943bba206978bd7e8cd5bc3547cc3cc11626f390fa78a301e5856502924f68d96b18433261677676124751c7247bbb067ee62841e5ee1268ef1

  • SSDEEP

    384:57Rd+SMS8Sn16d/s16JijVAJ9OSU5RCn3I3k4L1oPunRz+eV5pK/F23aKVed+NUk:5rKSBL1oP6Rz+Enfdh9YL8oPba

Score
7/10

Malware Config

Targets

    • Target

      FiveGuards-Spoofer.bat

    • Size

      46KB

    • MD5

      3187c6692aab27b174847c236f593593

    • SHA1

      e513aa3dca329b845be357372aab03620b66582d

    • SHA256

      ff60ef4a6204c915969009fa416d8e8a15b69f33c89ccde2b880aef529701c9e

    • SHA512

      125928222bac7943bba206978bd7e8cd5bc3547cc3cc11626f390fa78a301e5856502924f68d96b18433261677676124751c7247bbb067ee62841e5ee1268ef1

    • SSDEEP

      384:57Rd+SMS8Sn16d/s16JijVAJ9OSU5RCn3I3k4L1oPunRz+eV5pK/F23aKVed+NUk:5rKSBL1oP6Rz+Enfdh9YL8oPba

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks