Overview

overview

7

Static

static

3

333efd8d19...0N.exe

windows7-x64

7

333efd8d19...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    333efd8d192b7d783b01b68718101800N.exe

  • Size

    856KB

  • Sample

    240713-c2tt4ssaml

  • MD5

    333efd8d192b7d783b01b68718101800

  • SHA1

    368f9cc93a17c2703715522826ff81aac14da6d1

  • SHA256

    b339c086f6b8b3c3a9a95fbd32ac43b2f30783a90520a900e6ff8e282056bae0

  • SHA512

    caac69331305031569d52883b3b68073eea8da5cc03e2aa352a1ad21442ebbb3a2e54882603f45162b2f563933749bea9b72edb2fc8c13ee35c8a792303a4241

  • SSDEEP

    12288:dXCNi9BlCfYpwz/RSTfPic4lAV9S/RH/5PgR5ywsgGIy6rr7GDvg3JigsjImhB:oWE/eJBV9ARf5IR5vsgGWODvg5iPjIc

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      333efd8d192b7d783b01b68718101800N.exe

    • Size

      856KB

    • MD5

      333efd8d192b7d783b01b68718101800

    • SHA1

      368f9cc93a17c2703715522826ff81aac14da6d1

    • SHA256

      b339c086f6b8b3c3a9a95fbd32ac43b2f30783a90520a900e6ff8e282056bae0

    • SHA512

      caac69331305031569d52883b3b68073eea8da5cc03e2aa352a1ad21442ebbb3a2e54882603f45162b2f563933749bea9b72edb2fc8c13ee35c8a792303a4241

    • SSDEEP

      12288:dXCNi9BlCfYpwz/RSTfPic4lAV9S/RH/5PgR5ywsgGIy6rr7GDvg3JigsjImhB:oWE/eJBV9ARf5IR5vsgGWODvg5iPjIc

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks