Overview

overview

7

Static

static

3

31cba0f96a...0N.exe

windows7-x64

7

31cba0f96a...0N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31cba0f96af6789c3ae79e7eae9bb030N.exe

  • Size

    1.1MB

  • Sample

    240715-3zz68ayblc

  • MD5

    31cba0f96af6789c3ae79e7eae9bb030

  • SHA1

    b7d714865c29f22f5f5c5729f840140abdfcf1b0

  • SHA256

    efbf77cb78d4438ad94c8de60dd3027c9ec1b6e1dcbb80be1797f0d4eee55ef4

  • SHA512

    91955c743d130037682c823de5d430ef19dd729e16f34146f17086b34fd05f6f56110b7ca55a5f534a6c12f19485d6c1fa1cf902920a469f4639200ddc4961d9

  • SSDEEP

    24576:oW2tNakvWTFLrNROWxqbfBLT1bLHh2pUG57krLgLifJoWWdIChgdO:V2tNETBNPELxbL0UG1UgeuWWn

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      31cba0f96af6789c3ae79e7eae9bb030N.exe

    • Size

      1.1MB

    • MD5

      31cba0f96af6789c3ae79e7eae9bb030

    • SHA1

      b7d714865c29f22f5f5c5729f840140abdfcf1b0

    • SHA256

      efbf77cb78d4438ad94c8de60dd3027c9ec1b6e1dcbb80be1797f0d4eee55ef4

    • SHA512

      91955c743d130037682c823de5d430ef19dd729e16f34146f17086b34fd05f6f56110b7ca55a5f534a6c12f19485d6c1fa1cf902920a469f4639200ddc4961d9

    • SSDEEP

      24576:oW2tNakvWTFLrNROWxqbfBLT1bLHh2pUG57krLgLifJoWWdIChgdO:V2tNETBNPELxbL0UG1UgeuWWn

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks