Overview

overview

7

Static

static

3

9262ff259b...2f.exe

windows7-x64

7

9262ff259b...2f.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9262ff259b747f2c89f4c60490c7b8bbb381c2458690c4d90bb54df67116432f

  • Size

    3.6MB

  • Sample

    240710-b5sksa1cjd

  • MD5

    4c7005c0515aac0064722b517c182650

  • SHA1

    41809f11a756e3857e71f4b307c15c91c0f5b1b8

  • SHA256

    9262ff259b747f2c89f4c60490c7b8bbb381c2458690c4d90bb54df67116432f

  • SHA512

    df8a99965a62c0c88a7a11126fc0d0b4f22dc263a7e3b835f87a2b6dc8a896703f227d85c3c4249f68b5963fe888cd38ee68ebf543e9c9325fcc8da430e3048c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bSqz8:sxX7QnxrloE5dpUp1bVz8

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      9262ff259b747f2c89f4c60490c7b8bbb381c2458690c4d90bb54df67116432f

    • Size

      3.6MB

    • MD5

      4c7005c0515aac0064722b517c182650

    • SHA1

      41809f11a756e3857e71f4b307c15c91c0f5b1b8

    • SHA256

      9262ff259b747f2c89f4c60490c7b8bbb381c2458690c4d90bb54df67116432f

    • SHA512

      df8a99965a62c0c88a7a11126fc0d0b4f22dc263a7e3b835f87a2b6dc8a896703f227d85c3c4249f68b5963fe888cd38ee68ebf543e9c9325fcc8da430e3048c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bSqz8:sxX7QnxrloE5dpUp1bVz8

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks