Overview

overview

7

Static

static

3

34c71c789a...6d.exe

windows7-x64

7

34c71c789a...6d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    34c71c789a33cea271b9cbe5bf67e32ed6dd3f5bec126b39b8adf6966433d66d

  • Size

    4.1MB

  • Sample

    240710-zyrlxasdre

  • MD5

    03a7e9995d0a557460b5d7670ba7dc2d

  • SHA1

    4db8d8d938cb1ecf01cabfad0ee37b4268c0f0a9

  • SHA256

    34c71c789a33cea271b9cbe5bf67e32ed6dd3f5bec126b39b8adf6966433d66d

  • SHA512

    c3ad4bba75ae6ab4476ff5d164e72a0e6bb6b345679a8ebf03f9cec0298b24cbe9e2b3fe9cc2eb622a27ec6413ef7dab282e587105be799e5fdea8facf57009d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpGbVz8eLFcz

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      34c71c789a33cea271b9cbe5bf67e32ed6dd3f5bec126b39b8adf6966433d66d

    • Size

      4.1MB

    • MD5

      03a7e9995d0a557460b5d7670ba7dc2d

    • SHA1

      4db8d8d938cb1ecf01cabfad0ee37b4268c0f0a9

    • SHA256

      34c71c789a33cea271b9cbe5bf67e32ed6dd3f5bec126b39b8adf6966433d66d

    • SHA512

      c3ad4bba75ae6ab4476ff5d164e72a0e6bb6b345679a8ebf03f9cec0298b24cbe9e2b3fe9cc2eb622a27ec6413ef7dab282e587105be799e5fdea8facf57009d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpGbVz8eLFcz

    Score
    7/10
    persistencespywarestealer

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks