Overview

overview

7

Static

static

3

15556f2f4e...b6.exe

windows7-x64

7

15556f2f4e...b6.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    15556f2f4e156d7e04df7822bb3e6cb79984eed113917efc78f177c1df4b7fb6

  • Size

    2.7MB

  • Sample

    240710-x2g6jaxhkc

  • MD5

    24ad6103258df6b22320081cab1720a7

  • SHA1

    18a9c5048cb48f92edcef3795f773579f8cc429a

  • SHA256

    15556f2f4e156d7e04df7822bb3e6cb79984eed113917efc78f177c1df4b7fb6

  • SHA512

    866f8abe44421be7c31450d4385958891a626a50394021c580c342c81b99c9cb854a8e5cb22e67d7de94bb6b33c04f57e413cc56605cb3a5102989aa7b2b9019

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bSq:sxX7QnxrloE5dpUpUbV

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      15556f2f4e156d7e04df7822bb3e6cb79984eed113917efc78f177c1df4b7fb6

    • Size

      2.7MB

    • MD5

      24ad6103258df6b22320081cab1720a7

    • SHA1

      18a9c5048cb48f92edcef3795f773579f8cc429a

    • SHA256

      15556f2f4e156d7e04df7822bb3e6cb79984eed113917efc78f177c1df4b7fb6

    • SHA512

      866f8abe44421be7c31450d4385958891a626a50394021c580c342c81b99c9cb854a8e5cb22e67d7de94bb6b33c04f57e413cc56605cb3a5102989aa7b2b9019

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bSq:sxX7QnxrloE5dpUpUbV

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks