Overview

overview

7

Static

static

3

96b63963b3...85.exe

windows7-x64

7

96b63963b3...85.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    96b63963b31a085d20d8156d67c5c4fed5c3305c0369424b912a7e5cbba3d685

  • Size

    16KB

  • Sample

    240705-enqlmsscmk

  • MD5

    61d0cf8dc285a58e76fd1d8114d95d95

  • SHA1

    6763023c02cb7151891e12a8e7ea0b31a3001ca4

  • SHA256

    96b63963b31a085d20d8156d67c5c4fed5c3305c0369424b912a7e5cbba3d685

  • SHA512

    705b4dadb825985ec9a3a68d46ecf1d7eb25442800e4277c076972f2ed8c76735cba1b43b17961b45a94c9ea7393a26fe80d37fab3c08c716baac244c13b2c21

  • SSDEEP

    192:nx+uPBkqyIfgm64++u6gzYMzZ0dqsEq65+O0I5L0pJ/WDvd0EtITbKH62RTs2/f6:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/i

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      96b63963b31a085d20d8156d67c5c4fed5c3305c0369424b912a7e5cbba3d685

    • Size

      16KB

    • MD5

      61d0cf8dc285a58e76fd1d8114d95d95

    • SHA1

      6763023c02cb7151891e12a8e7ea0b31a3001ca4

    • SHA256

      96b63963b31a085d20d8156d67c5c4fed5c3305c0369424b912a7e5cbba3d685

    • SHA512

      705b4dadb825985ec9a3a68d46ecf1d7eb25442800e4277c076972f2ed8c76735cba1b43b17961b45a94c9ea7393a26fe80d37fab3c08c716baac244c13b2c21

    • SSDEEP

      192:nx+uPBkqyIfgm64++u6gzYMzZ0dqsEq65+O0I5L0pJ/WDvd0EtITbKH62RTs2/f6:x+uPfoQ+DfYMzKdPEsOuubuEG3KHM2/i

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks