Overview

overview

10

Static

static

10

ConsoleApp...n2.exe

windows10-2004-x64

7

ConsoleApp...n2.exe

windows11-21h2-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ConsoleApplication2.exe

  • Size

    4.4MB

  • Sample

    240608-qyf1qsda43

  • MD5

    72f73734bb6dbf6381815d85d680fb8e

  • SHA1

    2a7c3855fc0e4a0813631946684a4173c425a266

  • SHA256

    8045c954475f76556ef8c7b3305af51f5c7c8359a527404266c9e980527c4396

  • SHA512

    96c3e0bef2224d5f5ebfe1d3880ecec1e120cfc56d6d978b91916332313e70c9167ed38204486640937912dff591e3e6faa72737e5e7a0441069087679e5b6f3

  • SSDEEP

    49152:d9vRNVGsS21WaeQc+4Vg/95kVM04UwF7mwY/yg57/7AxcH7snP3kPOxrKPG+OzX2:d9vRNVVtpvagb0kqIcPM+H

Score
10/10
riseprodiscoveryexecutionspywarestealer

Malware Config

Targets

    • Target

      ConsoleApplication2.exe

    • Size

      4.4MB

    • MD5

      72f73734bb6dbf6381815d85d680fb8e

    • SHA1

      2a7c3855fc0e4a0813631946684a4173c425a266

    • SHA256

      8045c954475f76556ef8c7b3305af51f5c7c8359a527404266c9e980527c4396

    • SHA512

      96c3e0bef2224d5f5ebfe1d3880ecec1e120cfc56d6d978b91916332313e70c9167ed38204486640937912dff591e3e6faa72737e5e7a0441069087679e5b6f3

    • SSDEEP

      49152:d9vRNVGsS21WaeQc+4Vg/95kVM04UwF7mwY/yg57/7AxcH7snP3kPOxrKPG+OzX2:d9vRNVVtpvagb0kqIcPM+H

    Score
    7/10
    discoveryexecutionspywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks