Overview

overview

7

Static

static

3

15782cb5a7...0N.exe

windows7-x64

7

15782cb5a7...0N.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    15782cb5a7bcdacf1a589f002f3f7890N.exe

  • Size

    1.9MB

  • Sample

    240721-1h6asswcle

  • MD5

    15782cb5a7bcdacf1a589f002f3f7890

  • SHA1

    4bb8f340f1f8f06a04431dcec054229f0a90b028

  • SHA256

    28d0ebb6c35b90397be26b23e4e6212cf61a3f8ff0085ac2cfe03bb1ec4c7474

  • SHA512

    bbdecf4020a33c8857df33c3ff0c75e7cc78bba16c2efd4b5113a011a2f4b09a94a7e68e3009321aec19ee4d86757be160adf7e29b172dd22d1889c3a8f9f911

  • SSDEEP

    49152:V0+27RkAaE9wXo9w8GEcUK7veL4HJVE81XB5Q7Fyfd+SG:r2CAdEXpUKDzHUu8Fgd+1

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      15782cb5a7bcdacf1a589f002f3f7890N.exe

    • Size

      1.9MB

    • MD5

      15782cb5a7bcdacf1a589f002f3f7890

    • SHA1

      4bb8f340f1f8f06a04431dcec054229f0a90b028

    • SHA256

      28d0ebb6c35b90397be26b23e4e6212cf61a3f8ff0085ac2cfe03bb1ec4c7474

    • SHA512

      bbdecf4020a33c8857df33c3ff0c75e7cc78bba16c2efd4b5113a011a2f4b09a94a7e68e3009321aec19ee4d86757be160adf7e29b172dd22d1889c3a8f9f911

    • SSDEEP

      49152:V0+27RkAaE9wXo9w8GEcUK7veL4HJVE81XB5Q7Fyfd+SG:r2CAdEXpUKDzHUu8Fgd+1

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks