Overview

overview

7

Static

static

1

PasswordSlip.exe

windows7-x64

7

PasswordSlip.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    PasswordSlip.exe

  • Size

    886KB

  • Sample

    240604-hkzlxsgf2z

  • MD5

    f8fec63b92e6ec3897492d8dae381df3

  • SHA1

    2f4607c9f6fbff45a1131b360f6851fc86ea34ee

  • SHA256

    901033e4bc7bb3020412faf05501caa052630d52522312226d160110a8aeaa59

  • SHA512

    42962dff50e5f9de83064613f71c90e7d1fa58ab97dfb991bbdd3c08a4b1e517859f56e14aa266376319a2e98749a20bb630a86dd962477298a442a321af0bbb

  • SSDEEP

    24576:UOfNkuu6mn1QXNndtq34nNmuB815MDn0+:D6yXN3qiXB815S0+

Score
7/10

Malware Config

Targets

    • Target

      PasswordSlip.exe

    • Size

      886KB

    • MD5

      f8fec63b92e6ec3897492d8dae381df3

    • SHA1

      2f4607c9f6fbff45a1131b360f6851fc86ea34ee

    • SHA256

      901033e4bc7bb3020412faf05501caa052630d52522312226d160110a8aeaa59

    • SHA512

      42962dff50e5f9de83064613f71c90e7d1fa58ab97dfb991bbdd3c08a4b1e517859f56e14aa266376319a2e98749a20bb630a86dd962477298a442a321af0bbb

    • SSDEEP

      24576:UOfNkuu6mn1QXNndtq34nNmuB815MDn0+:D6yXN3qiXB815S0+

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks