Overview

overview

7

Static

static

3

11aeaa78da...88.exe

windows7-x64

7

11aeaa78da...88.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    11aeaa78da04dea7dea9d34806cdcb457232b646e8a682712070bff13be2bd88

  • Size

    2.4MB

  • Sample

    240627-d8444atclm

  • MD5

    fdc564b020ee312641077d39fa2ae1e3

  • SHA1

    9f99039618165996378e238a61589bfa4171a2f6

  • SHA256

    11aeaa78da04dea7dea9d34806cdcb457232b646e8a682712070bff13be2bd88

  • SHA512

    10320e7325513cb9ba93bc9d44bb815f802bb5a6ce6bd83a677c0e7b0e1733253ae013f3d4942909d0256372a8a0c5acae3d7d564e9a6dc376aba49c619fcdad

  • SSDEEP

    3072:/0V0+k0n1l/+qL7JbWNbjPR0CyMN/fQBqEcmn:8eJGhpWN5VpEx

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      11aeaa78da04dea7dea9d34806cdcb457232b646e8a682712070bff13be2bd88

    • Size

      2.4MB

    • MD5

      fdc564b020ee312641077d39fa2ae1e3

    • SHA1

      9f99039618165996378e238a61589bfa4171a2f6

    • SHA256

      11aeaa78da04dea7dea9d34806cdcb457232b646e8a682712070bff13be2bd88

    • SHA512

      10320e7325513cb9ba93bc9d44bb815f802bb5a6ce6bd83a677c0e7b0e1733253ae013f3d4942909d0256372a8a0c5acae3d7d564e9a6dc376aba49c619fcdad

    • SSDEEP

      3072:/0V0+k0n1l/+qL7JbWNbjPR0CyMN/fQBqEcmn:8eJGhpWN5VpEx

    Score
    7/10
    persistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks