Overview

overview

8

Static

static

3

winprofile

windows7-x64

7

winprofile

windows10-1703-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cbbca438f4e0f2af37098c904fa0087ecf93ee32e2a337a6350c398669e99a0c

  • Size

    2.0MB

  • Sample

    240627-3a5emszfqj

  • MD5

    c67a9e0e0f2fa6a4aae9e208794543fd

  • SHA1

    ef31a04575c2173f491143ae6467f579ba561d20

  • SHA256

    cbbca438f4e0f2af37098c904fa0087ecf93ee32e2a337a6350c398669e99a0c

  • SHA512

    f996d5358cc4815c12e4d4b84c3bc4dff390014c3ee8071fd579ebb07dad8577453bb6d7b8df928eb7d90b14eaf7f90df3393e6980a1cc3540f9c631be3c72ac

  • SSDEEP

    49152:CNEyY80FNFPy4tGmml/0947g+b9W7m6S/sbs0wQ22qPAoFmka:YEhFvqXjbqoJQCk

Score
8/10
spywarestealer

Malware Config

Targets

    • Target

      cbbca438f4e0f2af37098c904fa0087ecf93ee32e2a337a6350c398669e99a0c

    • Size

      2.0MB

    • MD5

      c67a9e0e0f2fa6a4aae9e208794543fd

    • SHA1

      ef31a04575c2173f491143ae6467f579ba561d20

    • SHA256

      cbbca438f4e0f2af37098c904fa0087ecf93ee32e2a337a6350c398669e99a0c

    • SHA512

      f996d5358cc4815c12e4d4b84c3bc4dff390014c3ee8071fd579ebb07dad8577453bb6d7b8df928eb7d90b14eaf7f90df3393e6980a1cc3540f9c631be3c72ac

    • SSDEEP

      49152:CNEyY80FNFPy4tGmml/0947g+b9W7m6S/sbs0wQ22qPAoFmka:YEhFvqXjbqoJQCk

    Score
    8/10
    spywarestealer

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks