Overview

overview

7

Static

static

3

23e4f36769...0a.exe

windows7-x64

7

23e4f36769...0a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    23e4f367696f8032dc179e89157a1a9cb3d02066e4faf782499c9c94e02caf0a

  • Size

    3.1MB

  • Sample

    240610-yf17ysydlq

  • MD5

    0da2e533af3ca7e4ce8f791832fa3efc

  • SHA1

    7b415cd2a87ceb34cfc87a5d08e4bf80210a4e3b

  • SHA256

    23e4f367696f8032dc179e89157a1a9cb3d02066e4faf782499c9c94e02caf0a

  • SHA512

    42120c06cd149b6277c240b2f1719c43f5887060ff151eff1d5d61acabd4ddaca5233df9490cfc572d9ce50131e21fc440c97e1b0e0ddaedb161f8fc1e313a5c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8:sxX7QnxrloE5dpUpxbVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      23e4f367696f8032dc179e89157a1a9cb3d02066e4faf782499c9c94e02caf0a

    • Size

      3.1MB

    • MD5

      0da2e533af3ca7e4ce8f791832fa3efc

    • SHA1

      7b415cd2a87ceb34cfc87a5d08e4bf80210a4e3b

    • SHA256

      23e4f367696f8032dc179e89157a1a9cb3d02066e4faf782499c9c94e02caf0a

    • SHA512

      42120c06cd149b6277c240b2f1719c43f5887060ff151eff1d5d61acabd4ddaca5233df9490cfc572d9ce50131e21fc440c97e1b0e0ddaedb161f8fc1e313a5c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bSqz8:sxX7QnxrloE5dpUpxbVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks