Overview

overview

7

Static

static

3

2ee2265368...9a.exe

windows7-x64

7

2ee2265368...9a.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2ee2265368abec9986adbcd64a59b1abe9c40683803f617b0ed6a2852cf0dc9a

  • Size

    1.0MB

  • Sample

    240710-zkafgaygpp

  • MD5

    e553cc6505679275fbcca0e4f1a73e91

  • SHA1

    862999b23d86bf602a0692f2407cdc97e7e97381

  • SHA256

    2ee2265368abec9986adbcd64a59b1abe9c40683803f617b0ed6a2852cf0dc9a

  • SHA512

    f3afe7e78b796d23e0123c941013a78ff3ba34b5149ccb587e9725434cafe84cc275afaba1ccaa0beabdb56304ff63b3f6a39399b15fc9b27fcf8d8819abe0cd

  • SSDEEP

    24576:86SEl5bHLmBnPaAWaRzN1VfD74drcLtFfYC:5BnLuaaRZ1lP4drS

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      2ee2265368abec9986adbcd64a59b1abe9c40683803f617b0ed6a2852cf0dc9a

    • Size

      1.0MB

    • MD5

      e553cc6505679275fbcca0e4f1a73e91

    • SHA1

      862999b23d86bf602a0692f2407cdc97e7e97381

    • SHA256

      2ee2265368abec9986adbcd64a59b1abe9c40683803f617b0ed6a2852cf0dc9a

    • SHA512

      f3afe7e78b796d23e0123c941013a78ff3ba34b5149ccb587e9725434cafe84cc275afaba1ccaa0beabdb56304ff63b3f6a39399b15fc9b27fcf8d8819abe0cd

    • SSDEEP

      24576:86SEl5bHLmBnPaAWaRzN1VfD74drcLtFfYC:5BnLuaaRZ1lP4drS

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks