Overview

overview

7

Static

static

3

3a18d565a7...98.exe

windows7-x64

7

3a18d565a7...98.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a18d565a76b8d81150ebb73817d7210ed5177e5e229ac125f17929875323798

  • Size

    3.0MB

  • Sample

    240611-zmrsja1ekh

  • MD5

    505bd772e37996a7f90721b8816453fe

  • SHA1

    c0c881c2425d5bede74e20f91c675836037efb0a

  • SHA256

    3a18d565a76b8d81150ebb73817d7210ed5177e5e229ac125f17929875323798

  • SHA512

    9022c71ea87b2c7c5e1b7aa3783587d1eba9df02636c17c25cfc365ffba7a0de7c064fd3a98600333954d78b17ea6c2853222de98e0f3ab1a4bf35923ee6e318

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bSqz8b6LNX:sxX7QnxrloE5dpUplbVz8eLF

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      3a18d565a76b8d81150ebb73817d7210ed5177e5e229ac125f17929875323798

    • Size

      3.0MB

    • MD5

      505bd772e37996a7f90721b8816453fe

    • SHA1

      c0c881c2425d5bede74e20f91c675836037efb0a

    • SHA256

      3a18d565a76b8d81150ebb73817d7210ed5177e5e229ac125f17929875323798

    • SHA512

      9022c71ea87b2c7c5e1b7aa3783587d1eba9df02636c17c25cfc365ffba7a0de7c064fd3a98600333954d78b17ea6c2853222de98e0f3ab1a4bf35923ee6e318

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bSqz8b6LNX:sxX7QnxrloE5dpUplbVz8eLF

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks