Overview

overview

7

Static

static

3

5fa0c0995f...1c.exe

windows7-x64

7

5fa0c0995f...1c.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5fa0c0995f8095442343d64c6a13089f906021c4840dc36bf61f45505fecee1c

  • Size

    944KB

  • Sample

    240615-13fwmszhlp

  • MD5

    3b2afec499797faf25caf1aa600ca867

  • SHA1

    5fdc8a3881d8887ba09befafec495f53d82fa0d0

  • SHA256

    5fa0c0995f8095442343d64c6a13089f906021c4840dc36bf61f45505fecee1c

  • SHA512

    6a4aecf3ff0bb1998da95f1b494c3ec85e7ab1e6ed949c743f770496ab0ef3bc477bcf0301309bae1e14cbfb13c47ed1881dd57bbdaaa0b5bb94178359a92427

  • SSDEEP

    24576:CUhiHOeo8rin3thLi6LaRFdGJm0Q3WKVSwdr13Ek0VA:5hiHprothLi6KFdi2Ga9x3Ek0V

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      5fa0c0995f8095442343d64c6a13089f906021c4840dc36bf61f45505fecee1c

    • Size

      944KB

    • MD5

      3b2afec499797faf25caf1aa600ca867

    • SHA1

      5fdc8a3881d8887ba09befafec495f53d82fa0d0

    • SHA256

      5fa0c0995f8095442343d64c6a13089f906021c4840dc36bf61f45505fecee1c

    • SHA512

      6a4aecf3ff0bb1998da95f1b494c3ec85e7ab1e6ed949c743f770496ab0ef3bc477bcf0301309bae1e14cbfb13c47ed1881dd57bbdaaa0b5bb94178359a92427

    • SSDEEP

      24576:CUhiHOeo8rin3thLi6LaRFdGJm0Q3WKVSwdr13Ek0VA:5hiHprothLi6KFdi2Ga9x3Ek0V

    Score
    7/10
    spywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks