Overview

overview

7

Static

static

3

363c299c95...3f.exe

windows7-x64

7

363c299c95...3f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    363c299c95ef69ee08acf52190160bfc912df94a71cc268fc660e431dc18323f.exe

  • Size

    804KB

  • Sample

    240703-edtkjszfml

  • MD5

    ac2954db2a4d3420c66741fde1cec640

  • SHA1

    c6a9ab2a542e9ee5ab73510b0beed250f0f5b125

  • SHA256

    363c299c95ef69ee08acf52190160bfc912df94a71cc268fc660e431dc18323f

  • SHA512

    07d9a8c4fbadd71c207b7486aafba556c921eb7e138bc9822d904e99d558e5f2883679ea298cea100c29148d463c12db1d4a876ce83f9b22539fff769e63af11

  • SSDEEP

    24576:oWK8DQG0Ho5DhUPbrQq7LmbUON4hioo3Dda4:VKVHaI7mbUpioo3A4

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      363c299c95ef69ee08acf52190160bfc912df94a71cc268fc660e431dc18323f.exe

    • Size

      804KB

    • MD5

      ac2954db2a4d3420c66741fde1cec640

    • SHA1

      c6a9ab2a542e9ee5ab73510b0beed250f0f5b125

    • SHA256

      363c299c95ef69ee08acf52190160bfc912df94a71cc268fc660e431dc18323f

    • SHA512

      07d9a8c4fbadd71c207b7486aafba556c921eb7e138bc9822d904e99d558e5f2883679ea298cea100c29148d463c12db1d4a876ce83f9b22539fff769e63af11

    • SSDEEP

      24576:oWK8DQG0Ho5DhUPbrQq7LmbUON4hioo3Dda4:VKVHaI7mbUpioo3A4

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks