Overview

overview

7

Static

static

3

8046bc0fc7...3c.exe

windows7-x64

7

8046bc0fc7...3c.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8046bc0fc708067707ce78758bd2d03787e5de1b318d6154da962a3285506b3c

  • Size

    3.6MB

  • Sample

    240710-a18krsxerd

  • MD5

    bbaf7dc4ebe60d9c86ed3b545779fe86

  • SHA1

    bd83e582ad295ca27ae0ee55ca891b9c9ac4044f

  • SHA256

    8046bc0fc708067707ce78758bd2d03787e5de1b318d6154da962a3285506b3c

  • SHA512

    25cae2ce6dd842dce5a9156ba794a04127c996a4d22447904b6c2ac3db737b6e2cbbe8455b06bd632205ffac16d77dcc03fd292be3bcc8c3a3fca17e33d7d4f9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpsbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      8046bc0fc708067707ce78758bd2d03787e5de1b318d6154da962a3285506b3c

    • Size

      3.6MB

    • MD5

      bbaf7dc4ebe60d9c86ed3b545779fe86

    • SHA1

      bd83e582ad295ca27ae0ee55ca891b9c9ac4044f

    • SHA256

      8046bc0fc708067707ce78758bd2d03787e5de1b318d6154da962a3285506b3c

    • SHA512

      25cae2ce6dd842dce5a9156ba794a04127c996a4d22447904b6c2ac3db737b6e2cbbe8455b06bd632205ffac16d77dcc03fd292be3bcc8c3a3fca17e33d7d4f9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpsbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks