Overview

overview

7

Static

static

3

1f8accab91...f3.exe

windows7-x64

7

1f8accab91...f3.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1f8accab914d430255c05fb3dde8f73d4cf2de65f211df45b1238961243abaf3.exe

  • Size

    1020KB

  • Sample

    240705-ajlpnsxdrp

  • MD5

    f122ff858f98520cbe1a6280ded3c660

  • SHA1

    0cb2b0ff54b949577b424059d206bc4a4c96241f

  • SHA256

    1f8accab914d430255c05fb3dde8f73d4cf2de65f211df45b1238961243abaf3

  • SHA512

    4c491d88ec7f49e51cc940b2414ee760e1282d004a9bab31ec91072fabb0a6d012e7ce876c201291723070de4a2f42dad37a13b428de28051a297c46cd00918b

  • SSDEEP

    24576:oWRg7qqCMf9PsPrwpO8zcOILuPRniLm7ir+3Uee4V:VPqGrwpMXm7ii3UTe

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      1f8accab914d430255c05fb3dde8f73d4cf2de65f211df45b1238961243abaf3.exe

    • Size

      1020KB

    • MD5

      f122ff858f98520cbe1a6280ded3c660

    • SHA1

      0cb2b0ff54b949577b424059d206bc4a4c96241f

    • SHA256

      1f8accab914d430255c05fb3dde8f73d4cf2de65f211df45b1238961243abaf3

    • SHA512

      4c491d88ec7f49e51cc940b2414ee760e1282d004a9bab31ec91072fabb0a6d012e7ce876c201291723070de4a2f42dad37a13b428de28051a297c46cd00918b

    • SSDEEP

      24576:oWRg7qqCMf9PsPrwpO8zcOILuPRniLm7ir+3Uee4V:VPqGrwpMXm7ii3UTe

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks