Overview

overview

7

Static

static

3

5471bbc1ee...c4.exe

windows7-x64

7

5471bbc1ee...c4.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5471bbc1ee1d6d8828f69502bc4e5c9c3d53f2ff84da62eaf954a97571b719c4

  • Size

    95KB

  • Sample

    240706-1nkahsweka

  • MD5

    77d18439d0f167bbbf487ac0b8a50638

  • SHA1

    4b02a82265547f4f38882e43b630206f4c47e9da

  • SHA256

    5471bbc1ee1d6d8828f69502bc4e5c9c3d53f2ff84da62eaf954a97571b719c4

  • SHA512

    81d29263d304ea55d6633059f93ab7e591580d81d7defccd20476b18cf52d904e31b8caf37e7ab829a04a6f7318c0e9495a5db1f3c309081b6c5b2806283df3f

  • SSDEEP

    1536:t3x85+Ks2SNNxzXJjC61tCWffu4+k+iy8QtTfnARtdIu/u1r+JRwUXDWlOEHsll0:th85+KsJ1jC6aWffut0QARtdIJyJRNSD

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      5471bbc1ee1d6d8828f69502bc4e5c9c3d53f2ff84da62eaf954a97571b719c4

    • Size

      95KB

    • MD5

      77d18439d0f167bbbf487ac0b8a50638

    • SHA1

      4b02a82265547f4f38882e43b630206f4c47e9da

    • SHA256

      5471bbc1ee1d6d8828f69502bc4e5c9c3d53f2ff84da62eaf954a97571b719c4

    • SHA512

      81d29263d304ea55d6633059f93ab7e591580d81d7defccd20476b18cf52d904e31b8caf37e7ab829a04a6f7318c0e9495a5db1f3c309081b6c5b2806283df3f

    • SSDEEP

      1536:t3x85+Ks2SNNxzXJjC61tCWffu4+k+iy8QtTfnARtdIu/u1r+JRwUXDWlOEHsll0:th85+KsJ1jC6aWffut0QARtdIJyJRNSD

    Score
    7/10
    persistencespywarestealer

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks