General

  • Target

    win5.exe

  • Size

    13.8MB

  • Sample

    240618-wvwvnstela

  • MD5

    2639068bf1e1de3ccae340e6bee3e548

  • SHA1

    3eec25d70e72e94085b854a07af032d3e4df7c70

  • SHA256

    d8bbee1d3eee12b9d710cc892d767469578a511a8149ada07a05dfbee89941bf

  • SHA512

    45ada1b47ab66e2c5f9e9344fd0d2e3b759a738ff4a970138ab8253dd12c55d7fe9cce5a9c3bb23c9c52a7d6d46ff6a0f86381d64bfd19ae8b1b1f222040cb6f

  • SSDEEP

    196608:ugFgX7miZ0sKYu/PaQqtG7fpDOjmFpMRxtYSHdKiy4kdai7bN3mDRI1p+CbbPlaJ:LFDQQYGVKKSphMB3Q1sDVaJ

Malware Config

Targets

    • Target

      win5.exe

    • Size

      13.8MB

    • MD5

      2639068bf1e1de3ccae340e6bee3e548

    • SHA1

      3eec25d70e72e94085b854a07af032d3e4df7c70

    • SHA256

      d8bbee1d3eee12b9d710cc892d767469578a511a8149ada07a05dfbee89941bf

    • SHA512

      45ada1b47ab66e2c5f9e9344fd0d2e3b759a738ff4a970138ab8253dd12c55d7fe9cce5a9c3bb23c9c52a7d6d46ff6a0f86381d64bfd19ae8b1b1f222040cb6f

    • SSDEEP

      196608:ugFgX7miZ0sKYu/PaQqtG7fpDOjmFpMRxtYSHdKiy4kdai7bN3mDRI1p+CbbPlaJ:LFDQQYGVKKSphMB3Q1sDVaJ

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v15

Tasks