Overview

overview

7

Static

static

3

3fcd36ab47...21.exe

windows7-x64

7

3fcd36ab47...21.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3fcd36ab47caa90f17d137532bc60bca5b37699cbaac2e15b2a95d03658f6f21

  • Size

    3.6MB

  • Sample

    240608-1ws8dshg28

  • MD5

    5883958800fe5864fd1004ba1e60ea41

  • SHA1

    bc5477c6b3a9848c1fd3664e9daa74718628c5f0

  • SHA256

    3fcd36ab47caa90f17d137532bc60bca5b37699cbaac2e15b2a95d03658f6f21

  • SHA512

    01e1eb4c472fad42a02f4289eafd22709e49e0bd74a50b1da071fc2cf48ec6d1803293ce735f21d3013864b10f1b1b432f5976de6870cd301c2929795e48655d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpwbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      3fcd36ab47caa90f17d137532bc60bca5b37699cbaac2e15b2a95d03658f6f21

    • Size

      3.6MB

    • MD5

      5883958800fe5864fd1004ba1e60ea41

    • SHA1

      bc5477c6b3a9848c1fd3664e9daa74718628c5f0

    • SHA256

      3fcd36ab47caa90f17d137532bc60bca5b37699cbaac2e15b2a95d03658f6f21

    • SHA512

      01e1eb4c472fad42a02f4289eafd22709e49e0bd74a50b1da071fc2cf48ec6d1803293ce735f21d3013864b10f1b1b432f5976de6870cd301c2929795e48655d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpwbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks